Every CVE whose affected-product data names Qualcomm Eudora, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2007-2770 — CVSS 9.3 (critical): Stack-based buffer overflow in Eudora 7.1 allows user-assisted, remote SMTP servers to execute arbitrary code via a long SMTP reply. NOTE…
CVE-2002-2313 — CVSS 8.8 (high): Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email…
CVE-2001-1326 — CVSS 7.5 (high): Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables…
CVE-2001-0365 — CVSS 7.5 (high): Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML…
CVE-2002-0833 — CVSS 7.5 (high): Buffer overflow in Eudora 5.1.1 and 5.0-J for Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a…
CVE-2000-0342 — CVSS 7.5 (high): Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file…
CVE-1999-0427 — CVSS 7.5 (high): Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names.
CVE-2007-3166 — CVSS 6.8 (medium): Buffer overflow in Qualcomm Eudora 7.1.0.9 allows user-assisted, remote IMAP servers to execute arbitrary code via a long FLAGS response to…
CVE-2002-2351 — CVSS 6.4 (medium): Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a…
CVE-2004-2005 — CVSS 5.1 (medium): Buffer overflow in Eudora for Windows 5.2.1, 6.0.3, and 6.1 allows remote attackers to execute arbitrary code via an e-mail with (1) a link…
CVE-2002-1210 — CVSS 5.0 (medium): Qualcomm Eudora 5.1.1, 5.2, and possibly other versions stores email attachments in a predictable location, which allows remote attackers…
CVE-2002-1770 — CVSS 5.0 (medium): Qualcomm Eudora 5.1 allows remote attackers to execute arbitrary code via an HTML e-mail message that uses a file:// URL in a t:video tag…
CVE-2003-0300 — CVSS 5.0 (medium): The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal…
CVE-2003-0302 — CVSS 5.0 (medium): The IMAP Client for Eudora 5.2.1 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via…
CVE-2003-0336 — CVSS 5.0 (medium): Qualcomm Eudora 5.2.1 allows remote attackers to read arbitrary files via an email message with a carriage return (CR) character in a…
CVE-2003-0376 — CVSS 5.0 (medium): Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute…
CVE-2004-1521 — CVSS 5.0 (medium): Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded…
CVE-2004-1944 — CVSS 5.0 (medium): Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message.
CVE-1999-1448 — CVSS 5.0 (medium): Eudora and Eudora Light before 3.05 allows remote attackers to cause a crash and corrupt the user's mailbox via an e-mail message with…
CVE-2002-0456 — CVSS 5.0 (medium): Eudora 5.1 and earlier versions stores attachments in a directory with a fixed name, which could make it easier for attackers to exploit…
CVE-1999-1016 — CVSS 5.0 (medium): Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly…
CVE-2001-0677 — CVSS 5.0 (medium): Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted"…