Eudora email with Attachment Converted line denial of service
| eudora-email-attachmentconverted-dos (13732) |  Low Risk |
Description:
Eudora is vulnerable to a denial of service. A remote attacker can send an email with a malicious 'Attachment Converted' line to cause Eudora to crash, once the victim opens the email.
Platforms Affected:
- Qualcomm, Eudora prior to 6.0.1
Remedy:
Upgrade to the latest version of Eudora (6.0.1 or later), available from the Eudora Web site. See References.
Consequences:
Denial of Service
References:
- Eudora Web site, EUDORA FOR WINDOWS, VERSION 6.0.1 -- RELEASE NOTES at http://eudora.com/download/eudora/windows/6.0.1/RelNotes.txt.
- Eudora Web site, Eudora Download at http://www.eudora.com/products/eudora/download/.
- BID-9026: Qualcomm Eudora Spoofed Attachment Line Denial Of Service Vulnerability
Reported:
Nov 12, 2003
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net