Trillian Pro Security Vulnerabilities and Issues — Trillian Pro CVE List

Lucene search

Cerulean StudiosTrillian Pro

4 matches found

CVE•added 2005/08/16 4:0 a.m.•40 views

CVE-2004-2304

Integer overflow in Trillian 0.74 and earlier, and Trillian Pro 2.01 and earlier, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

7.5CVSS8.1AI score0.03243EPSS

CVE•added 2005/08/16 4:0 a.m.•38 views

CVE-2004-2370

Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name.

7.5CVSS8.5AI score0.05421EPSS

CVE•added 2005/03/04 5:0 a.m.•38 views

CVE-2005-0633

Buffer overflow in Trillian 3.0 and Pro 3.0 allows remote attackers to execute arbitrary code via a crafted PNG image file.

7.5CVSS8.2AI score0.0988EPSS

CVE•added 2005/08/03 4:0 a.m.•33 views

CVE-2005-2444

Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitive information.

2.1CVSS6.6AI score0.0007EPSS