CVE-2002-2351

Qualcomm Eudora 5.1 - Path Traversal via Trailing Dot in Attachment Name

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-2351. PoCs published by Paul Szabo.

AI-analyzed exploit summary This Perl script demonstrates a spoofing vulnerability in Eudora 6.1.1 where file extensions can be misrepresented to bypass warning dialogs, potentially tricking users into executing malicious attachments. It crafts a MIME email with embedded HTML and RTF constructs to exploit the flaw.

Description

Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).

Exploits (2)

exploitdb WORKING POC VERIFIED

by Paul Szabo · perlremotewindows

https://www.exploit-db.com/exploits/21696

View Code ZIP pw:eip

This Perl script demonstrates a spoofing vulnerability in Eudora 6.1.1 where file extensions can be misrepresented to bypass warning dialogs, potentially tricking users into executing malicious attachments. It crafts a MIME email with embedded HTML and RTF constructs to exploit the flaw.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Eudora 6.1.1

No auth needed

Prerequisites: Knowledge of the full path to the attachment directory

MITRE ATT&CK

T1566.001 - Spearphishing Attachment

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Paul Szabo · perlremotewindows

https://www.exploit-db.com/exploits/21695

View Code ZIP pw:eip

This Perl script demonstrates a spoofing vulnerability in Eudora 6.0 where file extensions and names of attachments can be manipulated to bypass warning dialogs and execute arbitrary code. It crafts a MIME email with various techniques to exploit the flaw, including embedded CR characters and HTML/RTF inclusions.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Eudora 6.0 (and possibly later versions)

No auth needed

Prerequisites: Knowledge of the victim's attachment directory path · Victim interaction to open the malicious email

MITRE ATT&CK

T1566.001 - Spearphishing Attachment

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5432

Various Sources mailing-list x_refsource_bugtraq

http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.html

Various Sources x_refsource_confirm

http://www.eudora.com/download/eudora/windows/5.2/RelNotes.txt

Scores

EPSS 0.0265

EPSS Percentile 83.6%

Details

CWE

CWE-22

Status published

Products (6)

qualcomm/eudora 5.1

qualcomm/eudora 5.2

qualcomm/eudora 5.2.1

qualcomm/eudora 6.0

qualcomm/eudora 6.0.1

qualcomm/eudora 6.1.1

Published Dec 31, 2002

Tracked Since Feb 18, 2026