Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2018 Tenable Network Security, Inc.TRILLIAN_3_1_5_1.NASL
HistoryMay 03, 2007 - 12:00 a.m.

Trillian < 3.1.5.1 XMPP Decoding Heap Overflow

2007-05-0300:00:00
This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
www.tenable.com
13
JSON

The version of Trillian installed on the remote host contains a buffer overflow vulnerability which can be triggered when decoding a malformed XMPP (eXtensible Messaging and Presence Protocol) message.

To exploit this flaw, an attacker would need to send a specially crafted XMPP message to a user of this program, thus causing arbitrary code execution.

#
# (C) Tenable Network Security, Inc.
#


include("compat.inc");

if (description)
{
  script_id(25148);
  script_version("1.13");

  script_cve_id("CVE-2007-2418");
  script_bugtraq_id(23781);

  script_name(english:"Trillian < 3.1.5.1 XMPP Decoding Heap Overflow");
  script_summary(english:"Checks version number of Trillian");

 script_set_attribute(attribute:"synopsis", value:
"The remote host contains an instant messaging application which is susceptible
to a heap overflow vulnerability." );
 script_set_attribute(attribute:"description", value:
"The version of Trillian installed on the remote host contains a buffer
overflow vulnerability which can be triggered when decoding a malformed
XMPP (eXtensible Messaging and Presence Protocol) message. 

To exploit this flaw, an attacker would need to send a specially crafted
XMPP message to a user of this program, thus causing arbitrary code 
execution." );
 script_set_attribute(attribute:"see_also", value:"http://dvlabs.tippingpoint.com/advisory/TPTI-07-06" );
 script_set_attribute(attribute:"solution", value:
"Upgrade to Trillian 3.1.5.1 or later." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"false");
 script_cwe_id(119);
 script_set_attribute(attribute:"plugin_publication_date", value: "2007/05/03");
 script_set_attribute(attribute:"vuln_publication_date", value: "2007/05/01");
 script_cvs_date("Date: 2018/08/01 17:36:15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:trillian:trillian");
script_end_attributes();


  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.");

  script_dependencies("trillian_installed.nasl");
  script_require_keys("SMB/Trillian/Version");

  exit(0);
}


ver = get_kb_item("SMB/Trillian/Version");
# Trillian > 3.1 is affected
if (ver && ver =~ "^3\.1\.([0-4]\.|5\.0)" )
  security_hole(get_kb_item("SMB/transport"));
VendorProductVersionCPE
trilliantrilliancpe:/a:trillian:trillian

Related

prion 1
cve 1
securityvulns 2
prion
prion
Heap overflow
2007-05-02 22:19:00
cve
cve
CVE-2007-2418
2007-05-02 22:19:00
securityvulns
securityvulns
TPTI-07-06: Trillian Pro Rendezvous XMPP HTML Decoding Heap Corruption
2007-05-04 00:00:00
Trillian instant messenger multiple security vulnerabilities
2007-05-19 00:00:00
JSON
Related for TRILLIAN_3_1_5_1.NASL
prion1cve1securityvulns2