CVE-2002-2351

Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:qualcomm:eudora:5.1:*:*:*:*:*:*:*
cpe:2.3:a:qualcomm:eudora:5.2:*:*:*:*:*:*:*
cpe:2.3:a:qualcomm:eudora:5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:qualcomm:eudora:6.0:*:*:*:*:*:*:*
cpe:2.3:a:qualcomm:eudora:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:qualcomm:eudora:6.1.1:*:*:*:*:*:*:*

History

20 Nov 2024, 23:43

Type Values Removed Values Added
References () http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.html - () http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.html -
References () http://www.eudora.com/download/eudora/windows/5.2/RelNotes.txt - () http://www.eudora.com/download/eudora/windows/5.2/RelNotes.txt -
References () http://www.securityfocus.com/bid/5432 - Exploit () http://www.securityfocus.com/bid/5432 - Exploit

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:43


NVD link : CVE-2002-2351

Mitre link : CVE-2002-2351

CVE.ORG link : CVE-2002-2351


JSON object : View

Products Affected

qualcomm

  • eudora
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')