CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-6024
https://notcve.org/view.php?id=CVE-2006-6024
Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) "Eudora WorldMail stack overflow" and (2) "Eudora WorldMail heap overflow" modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Múltiples desbordamientos de búfer en Eudora Worldmail, posiblemente Worldmail 3 versión 6.1.22.0, tiene impacto y vectores de ataque desconocidos, como ha sido demostrado por los módulos (1) "Eudora WorldMail stack overflow" and (2) "Eudora WorldMail heap overflow" en VulnDisco Pack. • http://secunia.com/advisories/22832 http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml http://www.securityfocus.com/bid/21095 •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 1CVE-2006-0637 – Eudora Qualcomm WorldMail 3.0 - 'IMAPd' Remote Overflow
https://notcve.org/view.php?id=CVE-2006-0637
Buffer overflow in cram.dll in QUALCOMM Eudora WorldMail 3.0 allows remote attackers to execute arbitrary code via an IMAP APPEND command with a long message literal argument, as demonstrated by Worldmail.pl. NOTE: this is a different vector and a different manipulation than CVE-2005-4267, so it might be a different vulnerability than CVE-2005-4267. • https://www.exploit-db.com/exploits/1380 http://www.securityfocus.com/archive/1/424157/100/0/threaded •
CVSS: 5.0EPSS: 1%CPEs: 20EXPL: 0CVE-2004-2301
https://notcve.org/view.php?id=CVE-2004-2301
Eudora before 6.1.1 allows remote attackers to cause a denial of service (crash) via an e-mail with a long "To:" field, possibly due to a buffer overflow. • http://www.eudora.com/download/eudora/windows/6.1.1/RelNotes.txt http://www.securityfocus.com/bid/10398 https://exchange.xforce.ibmcloud.com/vulnerabilities/16246 •
CVSS: 7.5EPSS: 4%CPEs: 2EXPL: 2CVE-2001-0365 – Qualcomm Eudora 5.0.2 - 'Use Microsoft Viewer' Code Execution
https://notcve.org/view.php?id=CVE-2001-0365
Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags. • https://www.exploit-db.com/exploits/20688 http://marc.info/?l=bugtraq&m=98503741910995&w=2 http://www.securityfocus.com/bid/2490 https://exchange.xforce.ibmcloud.com/vulnerabilities/6262 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-1999-0427
https://notcve.org/view.php?id=CVE-1999-0427
Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0427 •