Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Eudora
(Qualcomm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 24 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2007-05-21 | CVE-2007-2770 | Stack-based buffer overflow in Eudora 7.1 allows user-assisted, remote SMTP servers to execute arbitrary code via a long SMTP reply. NOTE: the user must click through a warning about a possible buffer overflow exploit to trigger this issue. | Eudora | N/A | ||
| 2004-12-31 | CVE-2004-2301 | Eudora before 6.1.1 allows remote attackers to cause a denial of service (crash) via an e-mail with a long "To:" field, possibly due to a buffer overflow. | Eudora | N/A | ||
| 2004-05-06 | CVE-2004-2005 | Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name. | Eudora | N/A | ||
| 2004-04-14 | CVE-2004-1944 | Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message. | Eudora | N/A | ||
| 2004-12-31 | CVE-2004-1521 | Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded attachments, which makes it easier for remote attackers to read arbitrary files via spoofed "Converted" headers. | Eudora | N/A | ||
| 2003-06-16 | CVE-2003-0376 | Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute arbitrary code via an Attachment Converted argument with a large number of . (dot) characters. | Eudora | N/A | ||
| 2003-05-22 | CVE-2003-0336 | Qualcomm Eudora 5.2.1 allows remote attackers to read arbitrary files via an email message with a carriage return (CR) character in a spoofed "Attachment Converted:" string, which is not properly handled by Eudora. | Eudora | N/A | ||
| 2003-06-16 | CVE-2003-0302 | The IMAP Client for Eudora 5.2.1 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors. | Eudora | N/A | ||
| 2003-06-16 | CVE-2003-0300 | The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors. | Outlook_express, Mozilla, Mutt, Eudora, Balsa, Sylpheed_email_client, Pine, Evolution | N/A | ||
| 2002-12-31 | CVE-2002-2351 | Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot). | Eudora | N/A |