Published: 31/12/2002 Updated: 05/09/2008

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The c-client library in Internet Message Access Protocol (IMAP) dated prior to 2002 RC2, as used by Pine 4.20 up to and including 4.44, allows remote malicious users to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field.

Vulnerable Product	Search on Vulmon	Subscribe to Product
university of washington pine 4.44
university of washington pine 4.20
university of washington pine 4.21
university of washington pine 4.30
university of washington pine 4.33

source: wwwsecurityfocuscom/bid/5301/info Pine is an open source mail user agent distributed by the University of Washington It is freely available for Unix, Linux, and Microsoft Operating Systems When a mail is received by pine that contains MIME content, and the value of the MIME boundary is blank, pine becomes unstable This vulnera ...

CWE-20 http://online.securityfocus.com/archive/1/284086 http://www.securityfocus.com/bid/5301 http://www.iss.net/security_center/static/9668.php https://nvd.nist.gov https://www.exploit-db.com/exploits/21644/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-2325

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect