Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0677

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0677
Last Modified 05 Sep 2008 04:24:39
Published 20 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0677

Summary

Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user.

Vulnerable Systems

Application

  • Qualcomm Eudora 5.0.2


References

XF - eudora-plain-text-attachment(6431)

BUGTRAQ - 20010418 Eudora file leakage problem (still)

BID - 2616

OSVDB - 3085


Last Updated: 27 May 2016 10:36:21