CVE-2000-0909 | Vulnerability Database | Aqua Security

Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header.

Affected Software

Name	Vendor	Start Version	End Version
Pine	University_of_washington	4.0.4 (including)	4.0.4 (including)
Pine	University_of_washington	4.10 (including)	4.10 (including)
Pine	University_of_washington	4.21 (including)	4.21 (including)

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc
http://archives.neohapsis.com/archives/bugtraq/2000-10/0441.html
http://www.linux-mandrake.com/en/security/MDKSA-2000-073.php3
http://www.redhat.com/support/errata/RHSA-2000-102.html
http://www.securityfocus.com/archive/1/84901
http://www.securityfocus.com/bid/1709
https://exchange.xforce.ibmcloud.com/vulnerabilities/5283
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc
http://archives.neohapsis.com/archives/bugtraq/2000-10/0441.html
http://www.linux-mandrake.com/en/security/MDKSA-2000-073.php3
http://www.redhat.com/support/errata/RHSA-2000-102.html
http://www.securityfocus.com/archive/1/84901
http://www.securityfocus.com/bid/1709
https://exchange.xforce.ibmcloud.com/vulnerabilities/5283

NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-0909
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html