Lucene search

[email protected]CVE-2004-2005

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-2005

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve

buffer overflow

eudora

windows

remote attack

arbitrary code

email security

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.167 Low

EPSS

Percentile

96.1%

JSON

Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link to a long URL to the C drive or (2) a long attachment name.

Affected configurations

NVD

Node

qualcommeudoraMatch5.2.1

qualcommeudoraMatch6.0

qualcommeudoraMatch6.0.1

qualcommeudoraMatch6.0.3

qualcommeudoraMatch6.1

CPENameOperatorVersion
qualcomm:eudoraqualcomm eudoraeq5.2.1
qualcomm:eudoraqualcomm eudoraeq6.0
qualcomm:eudoraqualcomm eudoraeq6.0.1
qualcomm:eudoraqualcomm eudoraeq6.0.3
qualcomm:eudoraqualcomm eudoraeq6.1

CPE	Name	Operator	Version
qualcomm:eudora	qualcomm eudora	eq	5.2.1
qualcomm:eudora	qualcomm eudora	eq	6.0
qualcomm:eudora	qualcomm eudora	eq	6.0.1
qualcomm:eudora	qualcomm eudora	eq	6.0.3
qualcomm:eudora	qualcomm eudora	eq	6.1

References

lists.netsys.com/pipermail/full-disclosure/2004-May/021059.html

marc.info/?l=bugtraq&m=108395487628044&w=2

secunia.com/advisories/11568

www.eudora.com/download/eudora/windows/6.1.1/RelNotes.txt

www.securityfocus.com/bid/10298

exchange.xforce.ibmcloud.com/vulnerabilities/16086

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.167 Low

EPSS

Percentile

96.1%

JSON

Related for CVE-2004-2005

cvelist1 nvd1