Pine Malformed Header Denial of Service Vulnerability

Pine is one of the most popular unix console email clients. If a message within a mailbox accessed by pine has a malformed X-Keywords line (X-Keywords is part of the email header), the client will crash without visible reason when attempting to parse the mailbox file. This is due to a bug in the c-client library, which is used for parsing the mailbox files. The result of this being exploited is a denial of service to the recipient of the email until the malicious malformed message is removed.


 

Privacy Statement
Copyright 2010, SecurityFocus