File Reading Vulnerability in Eudora by Qualcomm
CVE-2001-0677

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora
Vendor: CVE Published:; 20 September 2001

Summary

Eudora 5.0.2 has a security flaw that allows remote attackers to read arbitrary files on a user's system by crafting a malicious email. When a user receives this email, it exploits the 'Attachment Converted' MIME header which facilitates the leakage of file paths. If the email is forwarded to the attacker, it can result in unauthorized access to sensitive files, compromising user privacy and security.

References

http://www.securityfocus.com/bid/2616

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/6431

vdb-entryx_refsource_XF

http://www.osvdb.org/3085

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Sep 20, 2001
Vulnerability Reserved
Aug 29, 2001