CVE-2002-2351
published 2002-12-31CVE-2002-2351: Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
PriorityP427medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
2.65%
83.7th percentile
Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| qualcomm | eudora | — | — |
| qualcomm | eudora | — | — |
| qualcomm | eudora | — | — |
| qualcomm | eudora | — | — |
| qualcomm | eudora | — | — |
| qualcomm | eudora | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Qualcomm Eudora 5/6 - File Attachment Spoofing (1)
exploitdb·2002-08-08
CVE-2002-2351 Qualcomm Eudora 5/6 - File Attachment Spoofing (1)
Qualcomm Eudora 5/6 - File Attachment Spoofing (1)
---
source: https://www.securityfocus.com/bid/5432/info
Eudora is reported to be prone to an issue which may allow attackers to spoof the file extension in an attachment. This may aid an attacker in enticing a user of the e-mail client into executing malicious content, and in avoiding generating warning messages.
It is possible to refer to other files or attachments in a message through specially formatted inline text. It has been demonstrated possible to misrepresent some aspects of files referenced in this manner. This may cause end users to make erroneous judgements about the nature of file attachments, and allow malicious attachments to bypass normal warning dialogs displayed when executable content is launched.
If an attachment p
Exploit-DB
Qualcomm Eudora 5/6 - File Attachment Spoofing (2)
exploitdb·2002-08-08
CVE-2002-2351 Qualcomm Eudora 5/6 - File Attachment Spoofing (2)
Qualcomm Eudora 5/6 - File Attachment Spoofing (2)
---
source: https://www.securityfocus.com/bid/5432/info
Eudora is reported to be prone to an issue which may allow attackers to spoof the file extension in an attachment. This may aid an attacker in enticing a user of the e-mail client into executing malicious content, and in avoiding generating warning messages.
It is possible to refer to other files or attachments in a message through specially formatted inline text. It has been demonstrated possible to misrepresent some aspects of files referenced in this manner. This may cause end users to make erroneous judgements about the nature of file attachments, and allow malicious attachments to bypass normal warning dialogs displayed when executable content is launched.
If an attachment p
No writeups or analysis indexed.
http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.htmlhttp://www.eudora.com/download/eudora/windows/5.2/RelNotes.txthttp://www.securityfocus.com/bid/5432http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.htmlhttp://www.eudora.com/download/eudora/windows/5.2/RelNotes.txthttp://www.securityfocus.com/bid/5432
2002-12-31
Published