2 matches found
Cerulean Studios Trillian AIM XML Tag Handling Heap Buffer Overflow (CVE-2008-5403)
Cerulean Studios' Trillian is an instant messaging IM client application that can interact with various IM protocols such as MSN, AIM, ICQ, YAHOO, etc. Specifically, AIM clients uses Open System for Communication in Realtime OSCAR protocol to talk to the backend servers. In Trillian, communicatio...
CVE-2008-5403
CVE-2008-5403 : Heap-based buffer overflow in the XML parser of Trillian’s AIM plugin (aim.dll) allows remote attackers to execute arbitrary code when parsing malformed XML tags. Affected product: Cerulean Studios Trillian (AIM plugin). Vulnerability arises from a boundary/allocation error in XML...