Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Eudora
(Qualcomm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 24 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-04-28 | CVE-2000-0342 | Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment." | Eudora | 7.5 | ||
| 2000-05-01 | CVE-1999-0427 | Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. | Eudora, Eudora_light, Eudora_pro | N/A | ||
| 1999-08-27 | CVE-1999-1016 | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell. | Frontpage, Internet_explorer, Outlook_express, Eudora | N/A | ||
| 2007-06-11 | CVE-2007-3166 | Buffer overflow in Qualcomm Eudora 7.1.0.9 allows user-assisted, remote IMAP servers to execute arbitrary code via a long FLAGS response to a SELECT INBOX command. | Eudora | N/A | ||
| 2007-05-21 | CVE-2007-2770 | Stack-based buffer overflow in Eudora 7.1 allows user-assisted, remote SMTP servers to execute arbitrary code via a long SMTP reply. NOTE: the user must click through a warning about a possible buffer overflow exploit to trigger this issue. | Eudora | N/A | ||
| 2004-12-31 | CVE-2004-2301 | Eudora before 6.1.1 allows remote attackers to cause a denial of service (crash) via an e-mail with a long "To:" field, possibly due to a buffer overflow. | Eudora | N/A | ||
| 2004-05-06 | CVE-2004-2005 | Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name. | Eudora | N/A | ||
| 2004-04-14 | CVE-2004-1944 | Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message. | Eudora | N/A | ||
| 2004-12-31 | CVE-2004-1521 | Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded attachments, which makes it easier for remote attackers to read arbitrary files via spoofed "Converted" headers. | Eudora | N/A | ||
| 2003-06-16 | CVE-2003-0376 | Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute arbitrary code via an Attachment Converted argument with a large number of . (dot) characters. | Eudora | N/A |