Описание
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| pine | fixed | 4.62-1 | package | |
| alpine | not-affected | package |
Примечания
checked listed version, and it didn't have the problem
pine is non-free (alpine is free)
EPSS
Процентиль: 72%
0.0076
Низкий
Связанные уязвимости
redhat
больше 23 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
nvd
больше 22 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
github
больше 3 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
EPSS
Процентиль: 72%
0.0076
Низкий