CVE-2002-2313 Information

Description

Eudora email client 5.1.1 with \use Microsoft viewer\ enabled allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program which is processed by Internet Explorer.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2002-July/000644.html http://www.iss.net/security_center/static/9654.php