Lucene search

[email protected]NVD:CVE-2007-3832

HistoryJul 17, 2007 - 10:30 p.m.

CVE-2007-3832

2007-07-1722:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

0.126

Percentile

95.5%

JSON

Buffer overflow in the AOL Instant Messenger (AIM) protocol handler in AIM.DLL in Cerulean Studios Trillian allows remote attackers to execute arbitrary code via a malformed aim: URI, as demonstrated by a long URI beginning with the aim:///#1111111/ substring.

Affected configurations

Nvd

Node

cerulean_studiostrillianMatch3.1.6.0

VendorProductVersionCPE
cerulean_studiostrillian3.1.6.0cpe:2.3:a:cerulean_studios:trillian:3.1.6.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cerulean_studios	trillian	3.1.6.0	cpe:2.3:a:cerulean_studios:trillian:3.1.6.0:::::::*

References

archives.neohapsis.com/archives/fulldisclosure/2007-07/0356.html

secunia.com/advisories/26086

www.kb.cert.org/vuls/id/786920

www.securityfocus.com/bid/24927

www.vupen.com/english/advisories/2007/2546

www.xs-sniper.com/nmcfeters/Cross-App-Scripting-2.html

exchange.xforce.ibmcloud.com/vulnerabilities/35447

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

0.126

Percentile

95.5%

JSON

Related for NVD:CVE-2007-3832

prion1 cve1 exploitdb1 cert1 cvelist1 nessus1