New User? Need help? Click here to register for free! Registering removes the advertisements.

Computer Cops
image image image image image image image image
Prime Choice
· TechTV!
· Head Lines
· CCSP News Ltrs
· Dnld of the Week!
· Find a Cure!
· Ian T's (AR 17)
· Marcia's (OP13)
· Bill G's (CO3)
· Paul's (AR 5)
· Ian T's Archive
· Marcia's Archive
· Bill G's Archive
· Paul's Archive
image
Security Central
· Home
· Wireless
· Bookmarks
· CLSID
· Columbia
· Community
· Downloads
· Encyclopedia
· Feedback (send)
· Forums
· Gallery
· Giveaways
· HijackThis
· Journal
· Members List
· My Downloads
· PremChat
· Premium
· Private Messages
· Proxomitron
· Quizz
· Recommend Us
· RegChat
· Reviews
· Search (Topics)
· Sections
· Software
· Statistics
· Stories Archive
· Submit News
· Surveys
· Top
· Topics
· Web Links
· Your Account
image
CCSP Toolkit
· Email Virus Scan
· UDP Port Scanner
· TCP Port Scanner
· Trojan TCP Scan
· Reveal Your IP
· Algorithms
· Whois
· nmap port scanner
· IPs Banned [?]
image
Survey
Which Anti-Virus product do you use?
Computer Associates
Eset (NOD32)
F-Secure
Frisk (F-Prot)
Grisoft (AVG)
Kaspersky
Network Associates (McAfee)
Panda
Sophos
Symantec (NAV)
Trend Micro
Other



Results
Polls

Votes: 16730
Comments: 142
image
Donations
image
Translate
English German French
Italian Portuguese Spanish
Chinese Greek Russian
image
Hosted By
Computer Cops is a satisfied customer of [ JaguarPC ]
image
image Email Hassles: Advisories!: Eudora users warned over 'reply to all' trick image
Email Hassles!
Eudora users warned over 'reply to all' trick
By John Leyden

A buffer overflow vulnerability in Eudora, the popular email client, creates a mechanism for crackers to compromise targeted PCs.

The problem stems from a failure to properly verify the From: and Reply-To: when users of vulnerable versions of Eudora select Reply-To-All. This shortcoming creates a means for hackers to spam users with a maliciously constructed email designed to trigger this buffer overflow condition.

In practice it might be hard to trick users into selecting Reply-To-All in response to suspicious emails. But if they do then crackers would be able to run arbitrary code on vulnerable systems, so the problem is not to be sniffed at.

The vulnerability was discovered in Eudora version 5.x by Japanese security researcher Hisayuki Shinmachi of Secure Net Services in January and announced yesterday. Users are advised to update to Eudora 5.1-Jr3 (Japanese) or Eudora 6.0 (English) in order to shore up their security defences, as explained in an advisory by Secunia here.

Although Eudora security problems are not unprecedented, the package is far less afflicted with security issues than Microsoft's email client, known in these parts as Lookout. ®

TheRegister
Posted on Thursday, 13 November 2003 @ 04:15:00 EST by phoenix22
image

 
Login
Nickname

Password
· New User? ·
Click here to create a registered account.
image
Related Links
· TrackBack (0)
· Microsoft
· HotScripts
· W3 Consortium
· Spam Cop
· More about Email Hassles!
· News by phoenix22
Most read story about Email Hassles!:
Nasty e-mails raise blood pressure

image
Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent

image
Options

Printer Friendly Page  Printer Friendly Page

Send to a Friend  Send to a Friend
image
"Login" | Login/Create an Account | 0 comments
Threshold
  
The comments are owned by the poster. We aren't responsible for their content.
Home · Topics · Submit News · Top 10
This entire site, Cops Themes, and Computer Cops are © 2002 - 2004 Computer Cops, LLC. All rights reserved.
You can syndicate our news using the file RSS 0.91, ultramode.txt, or RSS 1.0.
Acceptable Use Policy. Use signifies your agreement.
Engine Copyright © 2002 by PHP-Nuke, GNU/GPL Licensed. ICRA Member.
Paul Laudanski, Member of Computer Cops, LLC
Server Load: 1756 pages served in previous 5 minutes. Page Generation: 0.210 seconds.