Pine Malformed Header Denial of Service Vulnerability
BID:1687
Info
Pine Malformed Header Denial of Service Vulnerability
| Bugtraq ID: | 1687 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 13 2000 12:00AM |
| Updated: | Sep 13 2000 12:00AM |
| Credit: | First made public in FreeBSD advisory FreeBSD-SA-00:47, published on September 13, 2000. |
| Vulnerable: |
University of Washington Pine 4.21 University of Washington Pine 4.20 University of Washington Pine 4.10 University of Washington Pine 4.0.4 University of Washington Pine 4.0.2 University of Washington Pine 4.0 x |
| Not Vulnerable: | |
Discussion
Pine Malformed Header Denial of Service Vulnerability
Pine is one of the most popular unix console email clients. If a message within a mailbox accessed by pine has a malformed X-Keywords line (X-Keywords is part of the email header), the client will crash without visible reason when attempting to parse the mailbox file. This is due to a bug in the c-client library, which is used for parsing the mailbox files. The result of this being exploited is a denial of service to the recipient of the email until the malicious malformed message is removed.
Pine is one of the most popular unix console email clients. If a message within a mailbox accessed by pine has a malformed X-Keywords line (X-Keywords is part of the email header), the client will crash without visible reason when attempting to parse the mailbox file. This is due to a bug in the c-client library, which is used for parsing the mailbox files. The result of this being exploited is a denial of service to the recipient of the email until the malicious malformed message is removed.
Exploit / POC
Pine Malformed Header Denial of Service Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Pine Malformed Header Denial of Service Vulnerability
Solution:
RedHat, FreeBSD and Mandrake have released patches for this vulnerability:
University of Washington Pine 4.0.4
University of Washington Pine 4.10
University of Washington Pine 4.21
Solution:
RedHat, FreeBSD and Mandrake have released patches for this vulnerability:
University of Washington Pine 4.0.4
-
Red Hat Inc. 5.2 alpha imap-2000-2.5.alpha.rpm
ftp://updates.redhat.com/5.2/alpha/imap-2000-2.5.alpha.rpm -
Red Hat Inc. 5.2 alpha imap-devel-2000-2.5.alpha.rpm
ftp://updates.redhat.com/5.2/alpha/imap-devel-2000-2.5.alpha.rpm -
Red Hat Inc. 5.2 i386 imap-2000-2.5.i386.rpm
ftp://updates.redhat.com/5.2/i386/imap-2000-2.5.i386.rpm -
Red Hat Inc. 5.2 i386 imap-devel-2000-2.5.i386.rpm
ftp://updates.redhat.com/5.2/i386/imap-devel-2000-2.5.i386.rpm -
Red Hat Inc. 5.2 sparc imap-2000-2.5.sparc.rpm
ftp://updates.redhat.com/5.2/sparc/imap-2000-2.5.sparc.rpm -
Red Hat Inc. 5.2 sparc imap-devel-2000-2.5.sparc.rpm
ftp://updates.redhat.com/5.2/sparc/imap-devel-2000-2.5.sparc.rpm -
RedHat 5.2 (i386): pine-4.30-1.52
ftp://updates.redhat.com/5.2/i386/pine-4.30-1.52.i386.rpm -
RedHat 5.2 (Sparc): pine-4.30-1.52
ftp://updates.redhat.com/5.2/sparc/pine-4.30-1.52.sparc.rpm
University of Washington Pine 4.10
-
MandrakeSoft 6.0 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/ pine-4.30-3.3mdk.i586.rpm -
MandrakeSoft 6.1 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/ pine-4.30-3.3mdk.i586.rpm -
MandrakeSoft 7.0 i386 pine-4.30-3.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/ pine-4.30-3.3mdk.i586.rpm -
Red Hat Inc. 6.0 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.0/alpha/imap-2000-2.6.alpha.rpm -
Red Hat Inc. 6.0 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.0/alpha/imap-devel-2000-2.6.alpha.rpm -
Red Hat Inc. 6.0 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.0/i386/imap-2000-2.6.i386.rpm -
Red Hat Inc. 6.0 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.0/i386/imap-devel-2000-2.6.i386.rpm -
Red Hat Inc. 6.0 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.0/sparc/imap-2000-2.6.sparc.rpm -
Red Hat Inc. 6.0 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.0/sparc/imap-devel-2000-2.6.sparc.rpm -
Red Hat Inc. 6.1 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/imap-2000-2.6.alpha.rpm -
Red Hat Inc. 6.1 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/imap-devel-2000-2.6.alpha.rpm -
Red Hat Inc. 6.1 alpha pine-4.30-1.62.alpha.rpm
ftp://updates.redhat.com/6.1/alpha/pine-4.30-1.62.alpha.rpm -
Red Hat Inc. 6.1 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.1/i386/imap-2000-2.6.i386.rpm -
Red Hat Inc. 6.1 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.1/i386/imap-devel-2000-2.6.i386.rpm -
Red Hat Inc. 6.1 i386 pine-4.30-1.62.i386.rpm
ftp://updates.redhat.com/6.1/i386/pine-4.30-1.62.i386.rpm -
Red Hat Inc. 6.1 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/imap-2000-2.6.sparc.rpm -
Red Hat Inc. 6.1 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/imap-devel-2000-2.6.sparc.rpm -
Red Hat Inc. 6.1 sparc pine-4.30-1.62.sparc.rpm
ftp://updates.redhat.com/6.1/sparc/pine-4.30-1.62.sparc.rpm -
RedHat 6.0 (Alpha): pine-4.30-1.62
ftp://updates.redhat.com/6.0/alpha/pine-4.30-1.62.alpha.rpm -
RedHat 6.0 (i386): pine-4.30-1.62
ftp://updates.redhat.com/6.0/i386/pine-4.30-1.62.i386.rpm -
RedHat 6.0 (Sparc): pine-4.30-1.62
ftp://updates.redhat.com/6.0/sparc/pine-4.30-1.62.sparc.rpm
University of Washington Pine 4.21
-
FreeBSD ports-3 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/mail/pi ne-4.21.tgz -
FreeBSD ports-4 alpha pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/mail/p ine-4.21.tgz -
FreeBSD ports-4 i386 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/mail/pi ne-4.21.tgz -
FreeBSD ports-5 alpha pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/mail/ pine-4.21.tgz -
FreeBSD ports-5 i386 pine-4.21
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/mail/p ine-4.21.tgz -
MandrakeSoft 7.1 i386 pine-4.30-3.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/ pine-4.30-3.2mdk.i586.rpm -
MandrakeSoft 7.2 i386 pine-4.30-3.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/ pine-4.30-3.1mdk.i586.rpm -
Red Hat Inc. 6.2 alpha imap-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/imap-2000-2.6.alpha.rpm -
Red Hat Inc. 6.2 alpha imap-devel-2000-2.6.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/imap-devel-2000-2.6.alpha.rpm -
Red Hat Inc. 6.2 alpha pine-4.30-1.62.alpha.rpm
ftp://updates.redhat.com/6.2/alpha/pine-4.30-1.62.alpha.rpm -
Red Hat Inc. 6.2 i386 imap-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.2/i386/imap-2000-2.6.i386.rpm -
Red Hat Inc. 6.2 i386 imap-devel-2000-2.6.i386.rpm
ftp://updates.redhat.com/6.2/i386/imap-devel-2000-2.6.i386.rpm -
Red Hat Inc. 6.2 i386 pine-4.30-1.62.i386.rpm
ftp://updates.redhat.com/6.2/i386/pine-4.30-1.62.i386.rpm -
Red Hat Inc. 6.2 sparc imap-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/imap-2000-2.6.sparc.rpm -
Red Hat Inc. 6.2 sparc imap-devel-2000-2.6.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/imap-devel-2000-2.6.sparc.rpm -
Red Hat Inc. 6.2 sparc pine-4.30-1.62.sparc.rpm
ftp://updates.redhat.com/6.2/sparc/pine-4.30-1.62.sparc.rpm -
Red Hat Inc. 7.0 alpha imap-2000-3.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/imap-2000-3.alpha.rpm -
Red Hat Inc. 7.0 alpha imap-devel-2000-3.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/imap-devel-2000-3.alpha.rpm -
Red Hat Inc. 7.0 alpha pine-4.30-2.alpha.rpm
ftp://updates.redhat.com/7.0/alpha/pine-4.30-2.alpha.rpm -
Red Hat Inc. 7.0 i386 imap-2000-3.i386.rpm
ftp://updates.redhat.com/7.0/i386/imap-2000-3.i386.rpm -
Red Hat Inc. 7.0 i386 imap-devel-2000-3.i386.rpm
ftp://updates.redhat.com/7.0/i386/imap-devel-2000-3.i386.rpm -
Red Hat Inc. 7.0 i386 pine-4.30-2.i386.rpm
ftp://updates.redhat.com/7.0/i386/pine-4.30-2.i386.rpm
References
Pine Malformed Header Denial of Service Vulnerability
References:
References:
- FreeBSD Security Information (FreeBSD)
- Pine Homepage/Information (University of Washington)