CVE-2001-0677
First published: Thu Sep 20 2001(Updated: )
Eudora 5.0.2 allows a remote attacker to read arbitrary files via an email with the path of the target file in the "Attachment Converted" MIME header, which sends the file when the email is forwarded to the attacker by the user.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Eudora | =5.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2001-0677?
CVE-2001-0677 has been classified as a moderate severity vulnerability due to its potential for unauthorized file access.
How do I fix CVE-2001-0677?
To mitigate CVE-2001-0677, the recommended action is to upgrade to a newer version of Eudora that is not affected by this vulnerability.
What type of attack is associated with CVE-2001-0677?
CVE-2001-0677 allows a remote attacker to exploit the vulnerability via manipulated email attachments to access arbitrary files on the user's system.
Who is affected by CVE-2001-0677?
Users of Eudora version 5.0.2 are affected by CVE-2001-0677, which can lead to unintentional file disclosure.
What impact does CVE-2001-0677 have on affected systems?
The impact of CVE-2001-0677 is that it can lead to sensitive information being disclosed without user consent, compromising user privacy.
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/qualcomm
- canonical/eudora
- version/eudora/5.0.2