CVE-2002-1210 Information

Description

Qualcomm Eudora 5.1.1 5.2 and possibly other versions stores email attachments in a predictable location which allows remote attackers to read arbitrary files via a link that loads an attachment with malicious script into a frame which then executes the script in the local browser context.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0079.html http://www.idefense.com/advisory/11.19.02b.txt