CVE-2004-1521

Eudora 6.2.0.14 - Info Disclosure

Title source: llm

Description

Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded attachments, which makes it easier for remote attackers to read arbitrary files via spoofed "Converted" headers.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · perlremotewindows

https://www.exploit-db.com/exploits/163

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=ntbugtraq&m=110053102601655&w=2

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/18064

[Mailing List] http://marc.info/?l=bugtraq&m=110037078519691&w=2

[Vendor Advisory] http://packetstormsecurity.nl/0411-exploits/eudora62014.txt

Scores

EPSS 0.0345

EPSS Percentile 87.5%

Details

Status published

Products (1)

qualcomm/eudora 6.2.0.14

Published Dec 31, 2004

Tracked Since Feb 18, 2026