Oval Definition:
oval:org.mitre.oval:def:503
Revision Date
:
2007-04-25
Version
:
17
Title
:
Integer Signedness Error in PINE
Description
:
Integer signedness error in rfc2231_get_param from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2003-0721
Platform(s)
:
Red Hat Linux 9
Product(s)
:
pine
Definition Synopsis
Software section
Red Hat 9 is installed
AND
ix86 architecture
AND
pine version is less than 4.44-19.90.0
AND
Configuration section
/usr/bin/pine is executable
/usr/bin/pine is executable
OR
/usr/bin/pine is executable
OR
/usr/bin/pine is executable
BACK