CVE-2002-1903

Medium

5/10

Summary

Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Dec 31, 2002

CVE-2002-1903

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS