Everhart, Glenn
From:	Terence C. Haddock [thaddock@POBOXES.COM]
Sent:	Monday, February 08, 1999 1:28 PM
To:	BUGTRAQ@NETSPACE.ORG
Subject:	Patch for remote exploit of Pine 4.10

	To apply, download and un-tar the pine 4.10 source. Copy the patch
into the pine4.10 directory. Change directory to the pine4.10 directory,
and run this command:
	patch -p1 < pine4.10.patch
	This patch fixes the hole in Zalewski's post, it modifies
mailcap.c. Pine quotes parameters sent to scripts with single quotes ('),
and correctly escapes single quotes within the parameter with the sequence
'\'' (quote, slash quote quote). My patch makes it also escape backquotes
(`), replacing them with the sequence '\`'. Here at the University, our
main system running Solaris with Pine 4.10 is unaffected, it does not have
a system-wide /etc/mailcap, but many RedHat systems we run were.
	This patch was sent to UW this morning, I am in no way affiliated
with them. Hopefully they'll fix the main distribution and fix any other
similar holes pine may have (I only looked for this one).

Sincerely,
Terence C. Haddock