Buffer Overflow Vulnerabilities in Eudora Worldmail by Qualcomm
CVE-2006-6024

9.8CRITICAL

Key Information:

Vendor

Qualcomm
Status
Eudora Worldmail
Vendor
CVE Published:
21 November 2006

What is CVE-2006-6024?

Multiple buffer overflow vulnerabilities have been identified in Eudora Worldmail, particularly in Worldmail 3 version 6.1.22.0. These vulnerabilities could potentially allow remote attackers to execute arbitrary code, leading to serious security implications. The weaknesses were highlighted in the VulnDisco Pack, which demonstrated instances such as a 'stack overflow' and a 'heap overflow.' While specific attack vectors remain unknown, the research community is alerted to the potential risk posed by these vulnerabilities, necessitating awareness and precautionary measures amid ongoing evaluations.

References

http://www.securityfocus.com/bid/21095
vdb-entryx_refsource_BID
http://web.archive.org/web/20060502082657/http://www.gleg...
x_refsource_MISC
http://secunia.com/advisories/22832
third-party-advisoryx_refsource_SECUNIA

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.