Vulnerabilities > CVE-2002-2313 - Remote Security vulnerability in Qualcomm Eudora 5.1.1

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
NONE
network
qualcomm

Summary

Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.

Vulnerable Configurations

Part Description Count
Application
Qualcomm
1