CVE-2002-2313
Qualcomm Eudora 5.1.1 - Remote Code Execution via META Refresh Tag
Title source: llmDescription
Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2002-July/000644.html
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9654.php
Scores
EPSS
0.0083
EPSS Percentile
53.3%
Details
Status
published
Products (1)
qualcomm/eudora
5.1.1
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026