CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2003-0297
https://notcve.org/view.php?id=CVE-2003-0297
15 May 2003 — c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors. El cliente IMAP, usado en imap-2002b y Pine 4.53, permite que servidores IMAP dañinos originen una denegación de servicio (caída) y posiblemente ejecuten código arbitrario mediante ciertos valores de mailbox deama... • http://marc.info/?l=bugtraq&m=105294024124163&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2003-0300
https://notcve.org/view.php?id=CVE-2003-0300
15 May 2003 — The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors. El cliente IMAP para Sylpheed 0.8.11 permite que servidores IMAP remotos dañinos originen una denegación de servicio (caída) mediante ciertos tamaños literales muy largos que causan desbordamientos de búfer de enteros. • http://marc.info/?l=bugtraq&m=105294024124163&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1782
https://notcve.org/view.php?id=CVE-2002-1782
31 Dec 2002 — The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user. • http://online.securityfocus.com/archive/1/275127 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2002-1903
https://notcve.org/view.php?id=CVE-2002-1903
31 Dec 2002 — Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. • http://online.securityfocus.com/archive/1/276029 •
CVSS: 7.8EPSS: 3%CPEs: 5EXPL: 2CVE-2002-2325 – Pine 4.x - Empty MIME Boundary Denial of Service
https://notcve.org/view.php?id=CVE-2002-2325
31 Dec 2002 — The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. • https://www.exploit-db.com/exploits/21644 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 16%CPEs: 9EXPL: 2CVE-2002-1320 – Pine 4.x - 'From:' Heap Corruption
https://notcve.org/view.php?id=CVE-2002-1320
11 Dec 2002 — Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks ("). Pine 4.44 y anteriores permite a atacantes remotos causar una denegación de servicio (volcado del núcleo y fallo al reiniciar) mediante un mensaje de correo electrónico con una cabecera From que contiene un número largo de comillas ("). • https://www.exploit-db.com/exploits/21985 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2002-0014
https://notcve.org/view.php?id=CVE-2002-0014
26 Jul 2002 — URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&). • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000460 •
CVSS: 8.8EPSS: 32%CPEs: 4EXPL: 2CVE-2002-0379 – WU-IMAPd 2000/2001 - Partial Mailbox Attribute Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0379
25 Jun 2002 — Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request. • https://www.exploit-db.com/exploits/21442 •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 1CVE-2001-0736 – University of Washington Pico 3.x/4.x - File Overwrite
https://notcve.org/view.php?id=CVE-2001-0736
12 Oct 2001 — Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/20493 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-1197
https://notcve.org/view.php?id=CVE-2000-1197
31 Aug 2001 — POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:15.imap-uw.asc •