Vulnerability Details : CVE-2001-0365
Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing Javascript, with ActiveX controls and malicious code within IMG tags.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2001-0365
Probability of exploitation activity in the next 30 days: 4.08%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2001-0365
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2001-0365
Products affected by CVE-2001-0365
- cpe:2.3:a:qualcomm:eudora:*:*:*:*:*:*:*:*
- cpe:2.3:a:qualcomm:eudora:5.0.2:*:*:*:*:*:*:*