EUVD-2008-2402

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Stack-based buffer overflow in AIM.DLL allows remote code execution via a FONT tag in Trillian.

Reporter	Title	Published	Views	Family All 9
Tenable Nessus	Trillian < 3.1.10.0 Multiple Vulnerabilities	18 Aug 200400:00	–	nessus
Tenable Nessus	Trillian < 3.1.10.0 Multiple Vulnerabilities	22 May 200800:00	–	nessus
CVE	CVE-2008-2407	23 May 200815:00	–	cve
Cvelist	CVE-2008-2407	23 May 200815:00	–	cvelist
NVD	CVE-2008-2407	23 May 200815:32	–	nvd
OSV	CGA-RF62-MMMW-4HC6	29 Jan 202600:50	–	osv
OSV	CGA-WCV7-FGVW-RX4G	6 Jun 202412:29	–	osv
Prion	Stack overflow	23 May 200815:32	–	prion
Zero Day Initiative	Trillian AIM.DLL Long HTML Font Parameter Stack Overflow Vulnerability	21 May 200800:00	–	zdi

[
  {
    "enisaIdVendor": [
      {
        "id": "d5df33c1-df92-322c-ad8f-53ef9fbad71a",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "f41b963c-aa0d-3f7d-83fc-cff0aed8a472",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/42582
vupen	www.vupen.com/english/advisories/2008/1622
securityfocus	www.securityfocus.com/bid/29330
secunia	www.secunia.com/advisories/30336
securityfocus	www.securityfocus.com/archive/1/492433/100/0/threaded
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-08-029/
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 29.3

EPSS0.06149

buffer overflow remote code execution trillian aim.dll