SMTP: Eudora Spoofed Attachment in Message Body
This signature detects attempts to spoof an e-mail attachment. Eudora Windows versions prior to up to 6.0.3 are vulnerable. Attackers can send a maliciously crafted e-mail with an illegal "Attachment Converted:" line in the message body to spoof attachments, which can lead to remote code execution.
Extended Description
Successful exploitation of the vulnerability may allow execution of arbitrary code in the context of Eudora, and may gain unauthorized access to a vulnerable system.
Short Name
SMTP:EMAIL:EUDORA-SPOOF3
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
Attachment Body CVE-2003-0336 Eudora Message Spoofed in
Release Date
03/25/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Occasionally
CVSS Score
5.0