Описание
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:university_of_washington:pine:4.21:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pine:4.30:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pine:4.33:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pine:4.44:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.0076
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
больше 23 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
debian
больше 22 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: a ...
github
больше 3 лет назад
Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.
EPSS
Процентиль: 72%
0.0076
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other