Signature Detail

Short Name	SMTP:EXPLOIT:PINE-SLASHQUOTE
Severity	Low
Recommended	No
Category	SMTP
Keywords	Pine From-Header Remote DoS
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SMTP: Pine From-Header Remote DoS

This signature detects attempts to exploit a known vulnerability against Pine Mail User Agent (MUA) 4.44. Attackers can send a message that contains a maliciously crafted From header field to crash the service.

Extended Description

A heap corruption may occur when Pine receives an email message containing a particularly crafted "From:" address. Though the address is RFC compliant, Pine reportedly fails to parse it correctly, resulting in a core dump. Execution of arbitrary code may be possible.

Affected Products

University of Washington Pine 3.98.0
University of Washington Pine 4.0.0 X
University of Washington Pine 4.0.2
University of Washington Pine 4.0.4
University of Washington Pine 4.10.0
University of Washington Pine 4.20.0
University of Washington Pine 4.2.0 x
University of Washington Pine 4.21.0
University of Washington Pine 4.30.0
University of Washington Pine 4.33.0
University of Washington Pine 4.44.0

References

BugTraq: 6120
CVE: CVE-2002-1320
URL: http://www.washington.edu/pine/
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2002-1320
URL: http://www.kb.cert.org/vuls/id/780737

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

SMTP: Pine From-Header Remote DoS

Extended Description

Affected Products

References