Info

Disclosure

Mar 29, 1998

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Eudora contains a flaw that may allow a remote denial of service. The issue is triggered when an attachment with a filename longer than what is supported by Windows is sent to a victim, and will result in Windows or Eudora crashing, depending on the length of the filename specified and the version of Windows.

Classification

Attack Type: Denial of Service
Impact: Loss of Availability

Solution

Upgrade to version 5.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

QUALCOMM Incorporated	Eudora	3.0
		3.0.1
		3.0.2
		3.0.3
		3.0.5
		3.0.6
		4.0
		4.0.2
		4.2
		4.2.1
		4.2.2
		5.0
		5.0.1
		5.0.2
		5.1
		5.1.1

References

Bugtraq ID: 1210
CVE ID: 1999-0427 (see also: NVD)
ISS X-Force ID: 2038
Related OSVDB ID: 2548
Secunia Advisory ID: 8258
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_1/1073.html
http://archives.neohapsis.com/archives/bugtraq/2000-05/0162.html
Vendor URL: http://www.eudora.com/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

QUALCOMM Incorporated

Eudora

References

Credit