|
Eudora Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA9729
|
|
|
Release Date:
|
2003-09-15
|
|
Last Update:
|
2005-02-02
|
|
Popularity:
|
28,611 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Eudora 6.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
Paul Szabo has reported multiple vulnerabilities in Eudora 6, allowing malicious people to spoof attachments or compromise a user's system.
1) A boundary error within the handling of filenames can be exploited to cause a buffer overflow by passing an overly long filenames (250 bytes). Successful exploitation may potentially allow execution of arbitrary code.
This vulnerability reportedly affects versions 6.0 and prior and has been re-introduced in version 6.1.
2) It is possible to cause Eudora to show a different name than the actual attachment name. This may be exploited to trick users into opening malicious files.
This vulnerability reportedly affects versions 6.2 and prior.
Note: According to the vendor this vulnerability has been fixed. However, Paul Szabo has identified variants of the issue.
Other security issues have also been identified. However, they trigger a warning dialog.
These issues have previously been reported for Eudora 5.
Solution:
The vendor has reportedly fixed the vulnerabilities in version 6.2.1.
Versions later than 6.0.1 are not affected by the buffer overflow vulnerability.
Provided and/or discovered by:
Paul Szabo
Changelog:
2003-11-13: Updated solution. A new version of Eudora is still vulnerable to one of the vulnerabilities.
2004-03-19: The new version 6.0.3 is still vulnerable to the attachment spoofing vulnerability.
2004-04-20: Added information about version 6.1.
2004-07-07: Added information about version 6.1.2.
2004-11-16: Added information about version 6.2.
2005-02-02: Updated "Solution" section.
Original Advisory:
http://www.eudora.com/security.html
Other References:
SA8258:
http://secunia.com/advisories/8258/
SA7529:
http://secunia.com/advisories/7529/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
