CVE-2001-1326
First published: Tue May 29 2001(Updated: )
Eudora 5.1 allows remote attackers to execute arbitrary code when the "Use Microsoft Viewer" option is enabled and the "allow executables in HTML content" option is disabled, via an HTML email with a form that is activated from an image that the attacker spoofs as a link, which causes the user to execute the form and access embedded attachments.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Eudora | =5.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2001-1326?
CVE-2001-1326 is considered to be of high severity as it allows remote attackers to execute arbitrary code on the target system.
How do I fix CVE-2001-1326?
To fix CVE-2001-1326, users should disable the "Use Microsoft Viewer" option and do not open HTML emails from untrusted sources.
What software versions are affected by CVE-2001-1326?
CVE-2001-1326 specifically affects Eudora version 5.1.
What type of attack does CVE-2001-1326 involve?
CVE-2001-1326 involves a phishing attack using HTML emails designed to exploit vulnerabilities in Eudora.
Can CVE-2001-1326 be exploited without user interaction?
No, CVE-2001-1326 requires user interaction to activate the malicious form in the HTML email.
- agent/references
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/remedy
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/qualcomm
- canonical/eudora
- version/eudora/5.1