Signature Detail

SMTP: Eudora Spoofed Attachment in Message Body

This signature detects attempts to spoof an e-mail attachment. Eudora Windows versions prior to up to 6.0.3 are vulnerable. Attackers can send a maliciously crafted e-mail with an illegal "Attachment Converted:" line in the message body to spoof attachments, which can lead to remote code execution.

Extended Description

Successful exploitation of the vulnerability may allow execution of arbitrary code in the context of Eudora, and may gain unauthorized access to a vulnerable system.

References

• CVE: CVE-2003-0336
• URL: http://www.securityfocus.com/archive/1/322286