6 matches found
[Full-Disclosure] Eudora file URL buffer overflow
There is a buffer overflow in Eudora for Windows, verified on versions 6.1, 6.0.3 and 5.2.1. This is easily exploitable to run arbitrary code. I do not know if this issue affects Eudora for Macs. Demo: !/usr/bin/perl -- print "From: men"; print "To: youn"; print "Subject: Eudora file URL buffer...
Eudora buffer overflow
Buffer overflow on clicking oversized URL...
CVE-2004-2005
Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with 1 a link to a long URL to the C drive or 2 a long attachment name...
Eudora buffer overflow
Buffer overflow during "reply to all" on oversized From: and Reply-To: of original message...
Eudora buffer overflow
Large number of extensions in filename causes buffer overflow...
Eudora 5.2.1 buffer overflow DoS
Building on my Eudora attachment spoof http://www.securityfocus.com/archive/1/322286 I notice that sending a filename with many dots crashes Eudora, e.g. From: me To: you Attachment ConvertedCR: "B.A.A.A ... .A.A.A" with 122 repetitions of ".A" make it crash, writing an Exception.log file. Fewer...