CVE-2000-0352

Published: Jul 12, 2000

Modified: Aug 8, 2024

PUBLISHED

Description

Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

810

vdb-entry

x_refsource_BID

19991117 Pine: expanding env vars in URLs (seems to be fixed as of 4.21)

mailing-list

x_refsource_BUGTRAQ

19991227 Security hole in Pine < 4.21

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2000-0352

Description

Affected Products

References