Eudora Flaw

John Young jya at pipeline.com
Fri Aug 7 07:53:42 PDT 1998


Markoff reports in today's NY Times on Eudora's e-mail 
security flaw:


http://www.nytimes.com/library/tech/yr/mo/biztech/articles/07email-code.html

It's the feature which allows clicking on a URL in a message,
which can run an attached malicious program, or otherwise trash
a user's disk.

A fix is due out this afternoon from Qualcomm. In the meantime NYT
says the flaw can be fixed by going to "Options," "Viewing Mail" and 
turning off "Use Microsoft's viewer."

Security experts are quoted: beware any attachment to E-mail, 
and not just for Eudora.









More information about the cypherpunks-legacy mailing list