Lucene search

Trillian Security Vulnerabilities

cve

CVE-2008-2407

Stack-based buffer overflow in AIM.DLL in Cerulean Studios Trillian before 3.1.10.0 allows user-assisted remote attackers to execute arbitrary code via a long attribute value in a FONT tag in a message.

8AI Score

0.152EPSS

2008-05-23 03:32 PM

cve

CVE-2008-5401

Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsing."

7.8AI Score

0.715EPSS

2008-12-10 06:44 AM

cve

CVE-2008-5402

Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."

7.5AI Score

0.251EPSS

2008-12-10 06:44 AM

cve

CVE-2008-5403

Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a malformed XML tag.

7.9AI Score

0.707EPSS

2008-12-10 06:44 AM

cve

CVE-2008-6563

Buffer overflow in the XML parser in Trillian 3.1.9.0, and possibly earlier, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DTD file.

8.1AI Score

0.164EPSS

2009-03-31 05:30 PM