CVE-2000-0342

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 28, 2000
Updated: Nov 20, 2024
CWE ID 59

Summary

CVE-2000-0342 is a vulnerability affecting Eudora version 4.x email clients. This issue allows attackers to bypass the user warning for executable attachments, such as .exe, .com, and .bat, by using a malicious .lnk file instead. The .lnk file deceitfully refers to the attachment, which is referred to as a "Stealth Attachment" technique. Successful exploitation of this vulnerability could lead to arbitrary code execution and potential compromise of the affected system. Users of Eudora 4.x are advised to update to a newer, patched version or use alternative email clients to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share