Qualcomm : Security Vulnerabilities, CVEs, Published In 2001 (Code Execution)
Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags.
Max CVSS
7.5
EPSS Score
4.08%
Published
2001-06-27
Updated
2017-10-10
Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Max CVSS
7.5
EPSS Score
8.56%
Published
2001-07-16
Updated
2008-09-05
Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables in HTML content" option is disabled, via an HTML email with a form that is activated from an image that the attacker spoofs as a link, which causes the user to execute the form and access embedded attachments.
Max CVSS
7.5
EPSS Score
1.05%
Published
2001-05-29
Updated
2008-09-05
3 vulnerabilities found