CVE-2002-2351

Qualcomm Eudora - Path Traversal

Title source: rule

Description

Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).

Exploits (2)

exploitdb WORKING POC VERIFIED

by Paul Szabo · perlremotewindows

https://www.exploit-db.com/exploits/21696

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Paul Szabo · perlremotewindows

https://www.exploit-db.com/exploits/21695

View Code ZIP pw:eip

References (3)

[Exploit] http://www.securityfocus.com/bid/5432

[Various Sources] http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.html

[Various Sources] http://www.eudora.com/download/eudora/windows/5.2/RelNotes.txt

Scores

EPSS 0.0326

EPSS Percentile 87.2%

Details

CWE

CWE-22

Status published

Products (6)

qualcomm/eudora 5.1

qualcomm/eudora 5.2

qualcomm/eudora 5.2.1

qualcomm/eudora 6.0

qualcomm/eudora 6.0.1

qualcomm/eudora 6.1.1

Published Dec 31, 2002

Tracked Since Feb 18, 2026