CVE-2002-2351

Description

Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).

Affected products

• qualcomm / eudora5.1 – 5.1
• qualcomm / eudora5.2 – 5.2
• qualcomm / eudora5.2.1 – 5.2.1
• qualcomm / eudora6.0 – 6.0
• qualcomm / eudora6.0.1 – 6.0.1
• qualcomm / eudora6.1.1 – 6.1.1

References

• MISChttp://www.securityfocus.com/bid/5432
• MISChttp://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00142.html
• MISChttp://www.eudora.com/download/eudora/windows/5.2/RelNotes.txt