Qualcomm Eudora Hidden Attachment Execution Vulnerability

May 28, 2001

Security Focus alerts us to a problem with Eudora. Eudora, an email program for the Windows platform, Eudora contains a vulnerability which may make it possible for an attacker to execute arbitrary code on a remote system even if 'allow executables in HTML content' is disabled, if the 'Use Microsoft viewer' option is enabled. This attack can be carried out if the recipient of a maliciously crafted email 'submits' a form in the message. This may lead to remote attackers gaining access to victim hosts. A workaround is available.

Latest ColdFusion Talk (CF-Talk)

Question for UK List Members
query of query strange error
Files are getting uploaded full of zeros after CF9 upgrade
cfmail to Exchange using TLS
How to prevent cfhtmlhead content from being inserted into cfmail
Excel 2003/2007 Recalculating Interaction
Coldfusion Hosting
Problems verifying integers
CFHIGHCHARTS
Need to get at browser size and Flash support

Latest ColdFusion Jobs (CF-Jobs)

Mid to Sr Level Web Application De veloper – position 3510-1 - CA or NC
Contract to Hire in Irvine, CA
Telecommute Contract Position - Mid to Experienced ColdFusion Programmers Only
Need a Coldfusion Developer at Woodlawn MD for a Long Term Contract
(JOB) ColdFusion Programmer Needed (Ocean Isle Beach, NC) Raleigh,NC
Cold Fusion SQL Server and JavaScript Developer
(JOB) ColdFusion Programmer Needed (Ocean Isle Beach,NC) Wilmington,NC
*** Professional Services Available For Hire
(2) ColdFusion Experts to support FAA Senior Executives
(JOB) ColdFusion Developer in Florida!!!

Want a number like 800-ColdFusion?

My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?