Script Execution Vulnerability in Qualcomm Eudora Email Client
CVE-2002-1210

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora
Vendor: CVE Published:; 29 November 2002

Summary

Qualcomm Eudora, specifically versions 5.1.1 and 5.2, contains a vulnerability wherein email attachments are stored in a predictable manner. This flaw allows remote attackers to exploit the system by creating a link to load malicious attachments, executing arbitrary scripts within the local browser context. Such vulnerabilities can lead to unauthorized access to sensitive files, highlighting the need for users to secure their email clients effectively to prevent exploitation.

References

http://www.idefense.com/advisory/11.19.02b.txt

x_refsource_MISC

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/...

mailing-listx_refsource_VULNWATCH

Timeline

Vulnerability published
Nov 29, 2002
Vulnerability Reserved
Oct 14, 2002