Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Eudora executes (Java) URL

From: StoutB () PIOS COM (Stout, Bill)
Date: Fri, 7 Aug 1998 13:40:54 -0400

Eudora Pro 4.0 and 4.0.1 will execute Java from a URL.

"The Eudora flaw came to light just a little more than a week after
security researchers announced a similar problem in versions of
Microsoft's Outlook and Outlook Express e-mail programs and in
Netscape's Mail program. The Eudora vulnerability was brought to light
earlier this week by Richard M. Smith, president of Phar Lap Software, a
Cambridge, Mass.-based maker of operating system software and products
for Microsoft's MS-DOS, the operating system that predated Windows."
http://www.mercurycenter.com/premium/business/docs/internet07.htm

"You may have read recently that there is potential for unauthorized
programs to be run on your system through the use of hostile Java
scripts and/or applets. This problem affects users of Eudora Pro Email
4.0 and 4.0.1, as well as Eudora Pro CommCenter 4.0 and 4.0.1. Note that
Eudora Light users and users of previous versions of Eudora Pro are not
susceptible to these Java attacks..."
http://eudora.qualcomm.com/security.html

Bill Stout
Previous By Date Next
Previous By Thread Next

Current thread: