Buffer Overflow Vulnerability in Qualcomm Eudora WorldMail
CVE-2014-10031

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Eudora Worldmail
Vendor: CVE Published:; 13 January 2015

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 39%

What is CVE-2014-10031?

A buffer overflow vulnerability exists in the IMAPd service of Qualcomm Eudora WorldMail version 9.0.333.0. This flaw allows remote attackers to execute arbitrary code by sending a specially crafted UID command containing a long string. Exploitation of this vulnerability can compromise the integrity of the system, potentially leading to unauthorized access and control. Proper security measures should be implemented to mitigate risks associated with this vulnerability.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2014-10031 - Proof of Concept

References

http://osvdb.org/show/osvdb/104071

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/91833

vdb-entryx_refsource_XF

http://www.exploit-db.com/exploits/31694

exploitx_refsource_EXPLOIT-DB

EPSS Score

39% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 13, 2015
👾
Exploit known to exist
Jan 13, 2015
Vulnerability published
Jan 13, 2015
Vulnerability Reserved
Jan 13, 2015

CVE-2014-10031 Data

JSON