Pine 4.2.1 up to and including 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote malicious users to obtain sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
university of washington pine 4.21 |
||
university of washington pine 4.30 |
||
university of washington pine 4.44 |
||
university of washington pine 4.33 |