CVE-2001-1326

Qualcomm Eudora 5.1 - Remote Code Execution via Spoofed Image Link in HTML Email

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1326. PoCs published by http-equiv.

AI-analyzed exploit summary This exploit leverages a vulnerability in Eudora's handling of MHTML files to execute arbitrary code via a maliciously crafted email. The attack involves embedding a form and script in an email that, when submitted, triggers the execution of a malicious payload.

Description

Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables in HTML content" option is disabled, via an HTML email with a form that is activated from an image that the attacker spoofs as a link, which causes the user to execute the form and access embedded attachments.

Exploits (1)

exploitdb WORKING POC VERIFIED
by http-equiv · textremotewindows
https://www.exploit-db.com/exploits/20888

This exploit leverages a vulnerability in Eudora's handling of MHTML files to execute arbitrary code via a maliciously crafted email. The attack involves embedding a form and script in an email that, when submitted, triggers the execution of a malicious payload.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Eudora (versions including 5.1.1)
No auth needed
Prerequisites: Victim must use Eudora with 'Use Microsoft viewer' enabled · Victim must interact with the email form
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/187128
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2796

Scores

EPSS 0.0270
EPSS Percentile 84.0%

Details

Status published
Products (1)
qualcomm/eudora 5.1
Published May 29, 2001
Tracked Since Feb 18, 2026