Pine 4.x - 'From:' Heap Corruption

EDB-ID:

21985


Author:

lsjoberg

Type:

dos


Platform:

Linux

Date:

2002-11-07


source: https://www.securityfocus.com/bid/6120/info

A heap corruption may occur when Pine receives an email message containing a particularly crafted "From:" address. Though the address is RFC compliant, Pine reportedly fails to parse it correctly, resulting in a core dump. Execution of arbitrary code may be possible. 

"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\""@host.fubar