PT-2001-1861 · Qualcomm · Eudora

Published

2001-09-20

Updated

2017-10-10

CVE-2001-0677

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Eudora version 5.0.2

Description: The issue allows a remote attacker to read arbitrary files by sending an email with the path of the target file in the Attachment Converted MIME header. When the email is forwarded to the attacker by the user, the file is sent.

Recommendations: For Eudora version 5.0.2, consider disabling the forwarding of emails with attachments to minimize the risk of exploitation until a patch is available. Restrict access to sensitive files on the system to reduce the potential impact of this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0677

Affected Products

Eudora

PT-2001-1861 · Qualcomm · Eudora

CVE-2001-0677

Related Identifiers

Affected Products

References · 5