CVE-2006-0637

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora Worldmail
Vendor: CVE Published:; 10 February 2006

Summary

Buffer overflow in cram.dll in QUALCOMM Eudora WorldMail 3.0 allows remote attackers to execute arbitrary code via an IMAP APPEND command with a long message literal argument, as demonstrated by Worldmail.pl. NOTE: this is a different vector and a different manipulation than CVE-2005-4267, so it might be a different vulnerability than CVE-2005-4267.

References

http://www.securityfocus.com/archive/1/424157/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

3% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 10, 2006
Vulnerability Reserved
Feb 10, 2006