8.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:C/A:N
7.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.0%
Eudora email client 5.1.1, with “use Microsoft viewer” enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.
CPE | Name | Operator | Version |
---|---|---|---|
qualcomm:eudora | qualcomm eudora | eq | 5.1.1 |