CVE-2002-2313

Qualcomm Eudora 5.1.1 - Remote Code Execution via META Refresh Tag

Title source: llm
STIX 2.1

Description

Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2002-July/000644.html
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9654.php

Scores

EPSS 0.0083
EPSS Percentile 53.3%

Details

Status published
Products (1)
qualcomm/eudora 5.1.1
Published Dec 31, 2002
Tracked Since Feb 18, 2026