CVE-2001-0677

Eudora 5.0.2 - Arbitrary File Read via MIME Header

Title source: llm
STIX 2.1

Description

Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2616
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6431
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3085
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/177369

Scores

EPSS 0.0106
EPSS Percentile 60.7%

Details

Status published
Products (1)
qualcomm/eudora 5.0.2
Published Sep 20, 2001
Tracked Since Feb 18, 2026