Stack-based Buffer Overflow in Eudora Email Client
CVE-2007-2770

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora
Vendor: CVE Published:; 21 May 2007

Summary

A stack-based buffer overflow vulnerability exists in Eudora 7.1, which can potentially allow remote attackers to execute arbitrary code. This vulnerability is triggered when a user interacts with a manipulated SMTP server response. Although the user is presented with a warning about a possible buffer overflow, the action required to trigger the issue still relies on user confirmation. Exploiting this vulnerability requires user participation, making user education and awareness critical in mitigating the risks associated with this security flaw.

References

https://www.exploit-db.com/exploits/3934

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/34324

vdb-entryx_refsource_XF

http://osvdb.org/36198

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
May 21, 2007
Vulnerability Reserved
May 21, 2007