Eudora Encrypted Email Attachment And Image Exposure

2003-11-12T00:00:00
ID OSVDB:3079
Type osvdb
Reporter OSVDB
Modified 2003-11-12T00:00:00

Description

Vulnerability Description

Eudora contains a flaw that may lead to an unauthorized information disclosure. Eudora saves attachments and images in encrypted emails in a local directory without encryption resulting in a loss of confidentiality.

Solution Description

Upgrade to version Eudora 6.0.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Eudora contains a flaw that may lead to an unauthorized information disclosure. Eudora saves attachments and images in encrypted emails in a local directory without encryption resulting in a loss of confidentiality.

References:

Vendor URL: http://www.eudora.com/ Vendor Specific Advisory URL Secunia Advisory ID:10198 ISS X-Force ID: 13734 Bugtraq ID: 9028