CVE-2000-0847 | Vulnerability Database | Aqua Security

Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.

Affected Software

Name	Vendor	Start Version	End Version
Imap	University_of_washington	4.7b (including)	4.7b (including)
Imap	University_of_washington	4.7c (including)	4.7c (including)
Pine	University_of_washington	4.20 (including)	4.20 (including)
Pine	University_of_washington	4.21 (including)	4.21 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2000-08/0425.html
http://archives.neohapsis.com/archives/bugtraq/2000-08/0437.html
http://archives.neohapsis.com/archives/freebsd/2000-09/0108.html
http://www.securityfocus.com/bid/1646
http://www.securityfocus.com/bid/1687
https://exchange.xforce.ibmcloud.com/vulnerabilities/5223
http://archives.neohapsis.com/archives/bugtraq/2000-08/0425.html
http://archives.neohapsis.com/archives/bugtraq/2000-08/0437.html
http://archives.neohapsis.com/archives/freebsd/2000-09/0108.html
http://www.securityfocus.com/bid/1646
http://www.securityfocus.com/bid/1687
https://exchange.xforce.ibmcloud.com/vulnerabilities/5223

NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-0847
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html