Definition

Integer Signedness Error in PINE

oval:org.mitre.oval:def:503

Integer signedness error in rfc2231_get_param from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number.

Family:

unix

Status:

ACCEPTED

Platform(s):

Red Hat Linux 9

Class:

vulnerability

Reference(s):

CVE-2003-0721

Product(s):

pine