CVE-2002-2313

3 documents3 sources
Severity
8.8HIGH
EPSS
0.2%
top 55.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Qualcomm Eudora
Timeline
PublishedDec 31
Latest updateApr 30

Description

Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.

CVSS vector

AV:N/AC:M/C:C/I:C/A:NExploitability: 8.6 | Impact: 9.2

Affected Packages1 packages

NVDqualcomm/eudora5.1.1

🔴Vulnerability Details

2
GHSA
GHSA-fx46-g8v4-w5fp: Eudora email client 52022-04-30
CVEList
CVE-2002-2313: Eudora email client 52007-10-26
CVE-2002-2313 (HIGH CVSS 8.8) | Eudora email client 5.1.1 | cvebase.io