Vulnerability Report

CVE-2007-2770

RCE

Title: Qualcomm Eudora RCE

RCE

Proof Of Concept

PoC Available for CVE-2007-2770

CWE Category NVD-CWE-noinfo

Published Date May 21, 2007

Modified Date Apr 09, 2025

Exploit Status Available

Score 9.3 CVSS v2.0

Exploit Probability (EPSS)

3.77%

Vulnerability Summary

CVE-2007-2770: Stack-based buffer overflow in Eudora 7.1 allows user-assisted, remote SMTP servers to execute arbitrary code via a long SMTP reply. NOTE: the user must click through a warning about a possible buffer overflow exploit to trigger this issue.

Impacted Vendors

qualcomm 1

eudora 1

Reference Links

http://osvdb.org/36198 http://secunia.com/advisories/25282 https://exchange.xforce.ibmcloud.com/vulnerabilities/34324 https://www.exploit-db.com/exploits/3934 http://osvdb.org/36198 http://secunia.com/advisories/25282 https://exchange.xforce.ibmcloud.com/vulnerabilities/34324 https://www.exploit-db.com/exploits/3934

CVSS v2.0

Source Entity [email protected]

Severity HIGH

9.3

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:N/AC:M/Au:N/C:C/I:C/A:C

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2007-2770 Exploits & PoCs (Proof Of Concept)

Exploit-DB https://www.exploit-db.com/exploits/3934

View Code

April 09, 2025 MODIFIED

Vulnerability data or affected products updated.

May 21, 2007 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:N/AC:M/Au:N/C:C/I:C/A:C

Affected Stack

No specific products linked.