Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2005

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2004-2005
Last Modified 05 Sep 2008 04:42:56
Published 06 May 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-2005

Summary

Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name.

Vulnerable Systems

Application

  • Qualcomm Eudora 5.2.1

  • Qualcomm Eudora 6.0

  • Qualcomm Eudora 6.0.1

  • Qualcomm Eudora 6.0.3

  • Qualcomm Eudora 6.1


References

BID - 10298

SECUNIA - 11568

XF - eudora-long-url-bo(16086)

CONFIRM - http://www.eudora.com/download/eudora/windows/6.1.1/RelNotes.txt

BUGTRAQ - 20040507 Eudora file URL buffer overflow


Last Updated: 27 May 2016 10:39:17