Trillian Pro Security Vulnerabilities and Issues — Trillian Pro CVE List

Lucene search

Cerulean StudiosTrillian Pro

10 matches found

CVE•added 2008/12/10 6:44 a.m.•41 views

CVE-2008-5403

Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a malformed XML tag.

10CVSS7.9AI score0.25557EPSS

CVE•added 2005/08/16 4:0 a.m.•40 views

CVE-2004-2304

Integer overflow in Trillian 0.74 and earlier, and Trillian Pro 2.01 and earlier, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

7.5CVSS8.1AI score0.03243EPSS

CVE•added 2008/12/10 6:44 a.m.•40 views

CVE-2008-5401

Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsing."

10CVSS7.8AI score0.26693EPSS

CVE•added 2007/10/31 4:0 p.m.•38 views

CVE-2002-2390

Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.

10CVSS8.4AI score0.04659EPSS

CVE•added 2005/08/16 4:0 a.m.•38 views

CVE-2004-2370

Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name.

7.5CVSS8.5AI score0.05421EPSS

CVE•added 2005/03/04 5:0 a.m.•38 views

CVE-2005-0633

Buffer overflow in Trillian 3.0 and Pro 3.0 allows remote attackers to execute arbitrary code via a crafted PNG image file.

7.5CVSS8.2AI score0.0988EPSS

CVE•added 2008/12/10 6:44 a.m.•38 views

CVE-2008-5402

Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."

10CVSS7.5AI score0.1877EPSS

CVE•added 2007/05/03 12:19 a.m.•34 views

CVE-2007-2478

Multiple heap-based buffer overflows in the IRC component in Cerulean Studios Trillian Pro before 3.1.5.1 allow remote attackers to corrupt memory and possibly execute arbitrary code via (1) a URL with a long UTF-8 string, which triggers the overflow when the user highlights it, or (2) a font HTML ...

9.3CVSS6.4AI score0.20178EPSS

CVE•added 2005/08/03 4:0 a.m.•33 views

CVE-2005-2444

Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitive information.

2.1CVSS6.6AI score0.0007EPSS

CVE•added 2007/05/02 10:19 p.m.•32 views

CVE-2007-2418

Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs ...

10CVSS8AI score0.27095EPSS