CVSS: 7.5EPSS: 0%CPEs: 20EXPL: 0CVE-2004-2301
https://notcve.org/view.php?id=CVE-2004-2301
31 Dec 2004 — Eudora before 6.1.1 allows remote attackers to cause a denial of service (crash) via an e-mail with a long "To:" field, possibly due to a buffer overflow. • http://www.eudora.com/download/eudora/windows/6.1.1/RelNotes.txt •
CVSS: 8.8EPSS: 4%CPEs: 2EXPL: 2CVE-2001-0365 – Qualcomm Eudora 5.0.2 - 'Use Microsoft Viewer' Code Execution
https://notcve.org/view.php?id=CVE-2001-0365
27 Jun 2001 — Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags. • https://www.exploit-db.com/exploits/20688 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2000-0874
https://notcve.org/view.php?id=CVE-2000-0874
14 Nov 2000 — Eudora mail client includes the absolute path of the sender's host within a virtual card (VCF). • http://www.osvdb.org/1545 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-1999-0427
https://notcve.org/view.php?id=CVE-1999-0427
04 Feb 2000 — Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0427 •