Vulnerabilities > CVE-2006-0637 - Remote Security vulnerability in Qualcomm Eudora Worldmail 3.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

qualcomm

exploit available

NVD

Published: 2006-02-10

Updated: 2018-10-19

Summary

Buffer overflow in cram.dll in QUALCOMM Eudora WorldMail 3.0 allows remote attackers to execute arbitrary code via an IMAP APPEND command with a long message literal argument, as demonstrated by Worldmail.pl. NOTE: this is a different vector and a different manipulation than CVE-2005-4267, so it might be a different vulnerability than CVE-2005-4267.

Vulnerable Configurations

Part	Description	Count
Application	Qualcomm Qualcomm Eudora Worldmail 3.0	1

Exploit-Db

description	Eudora Qualcomm WorldMail 3.0 (IMAPd) Remote Overflow Exploit. CVE-2005-4267,CVE-2006-0637. Remote exploit for windows platform
id	EDB-ID:1380
last seen	2016-01-31
modified	2005-12-20
published	2005-12-20
reporter	muts
source	https://www.exploit-db.com/download/1380/
title	Eudora Qualcomm WorldMail 3.0 - IMAPd Remote Overflow Exploit

References

http://www.securityfocus.com/archive/1/424157/100/0/threaded