Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0365

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0365
Last Modified 05 Sep 2008 04:23:55
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0365

Summary

Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags.

Vulnerable Systems

Application

  • Qualcomm Eudora 5.0.2

  • Qualcomm Eudora 5.1


References

XF - eudora-html-execute-code(6262)

BID - 2490

BUGTRAQ - 20010318 feeble.you!dora.exploit


Last Updated: 27 May 2016 10:36:14