Eudora Attachment Filename DoS

1998-03-29T00:00:00
ID OSVDB:1793
Type osvdb
Reporter OSVDB
Modified 1998-03-29T00:00:00

Description

Vulnerability Description

Eudora contains a flaw that may allow a remote denial of service. The issue is triggered when an attachment with a filename longer than what is supported by Windows is sent to a victim, and will result in Windows or Eudora crashing, depending on the length of the filename specified and the version of Windows.

Solution Description

Upgrade to version 5.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Eudora contains a flaw that may allow a remote denial of service. The issue is triggered when an attachment with a filename longer than what is supported by Windows is sent to a victim, and will result in Windows or Eudora crashing, depending on the length of the filename specified and the version of Windows.

References:

Vendor URL: http://www.eudora.com/ Secunia Advisory ID:8258 Related OSVDB ID: 2548 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_1/1073.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-05/0162.html ISS X-Force ID: 2038 CVE-1999-0427 Bugtraq ID: 1210