Exploitation Summary
EIP tracks 1 public exploit for CVE-2003-0336. PoCs published by Bennett Haselton.
AI-analyzed exploit summary This is a writeup describing a vulnerability in Eudora 4.2/4.3 where malicious email senders can bypass executable attachment warnings by using a crafted HTML link to a .lnk file. The exploit leverages the lack of warning prompts for non-.exe, .com, or .bat files.
Description
Qualcomm Eudora 5.2.1 allows remote attackers to read arbitrary files via an email message with a carriage return (CR) character in a spoofed "Attachment Converted:" string, which is not properly handled by Eudora.
Exploits (1)
This is a writeup describing a vulnerability in Eudora 4.2/4.3 where malicious email senders can bypass executable attachment warnings by using a crafted HTML link to a .lnk file. The exploit leverages the lack of warning prompts for non-.exe, .com, or .bat files.