Eudora Pro 4.0 and 4.0.1 will execute Java from a URL. "The Eudora flaw came to light just a little more than a week after security researchers announced a similar problem in versions of Microsoft's Outlook and Outlook Express e-mail programs and in Netscape's Mail program. The Eudora vulnerability was brought to light earlier this week by Richard M. Smith, president of Phar Lap Software, a Cambridge, Mass.-based maker of operating system software and products for Microsoft's MS-DOS, the operating system that predated Windows." http://www.mercurycenter.com/premium/business/docs/internet07.htm "You may have read recently that there is potential for unauthorized programs to be run on your system through the use of hostile Java scripts and/or applets. This problem affects users of Eudora Pro Email 4.0 and 4.0.1, as well as Eudora Pro CommCenter 4.0 and 4.0.1. Note that Eudora Light users and users of previous versions of Eudora Pro are not susceptible to these Java attacks..." http://eudora.qualcomm.com/security.html Bill Stout
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:11:42 PDT