CVE-2001-0365

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora
Vendor: CVE Published:; 27 June 2001

Summary

Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags.

References

http://marc.info/?l=bugtraq&m=98503741910995&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/2490

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/6262

vdb-entryx_refsource_XF

EPSS Score

3% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 27, 2001
Vulnerability Reserved
May 24, 2001