Trillian@0.74 Security Vulnerabilities and Issues — Trillian@0.74 CVE List

Lucene search

Cerulean StudiosTrillian0.74

12 matches found

CVE•added 2008/12/10 6:44 a.m.•41 views

CVE-2008-5403

Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a malformed XML tag.

10CVSS7.9AI score0.25557EPSS

CVE•added 2005/08/16 4:0 a.m.•40 views

CVE-2004-2304

Integer overflow in Trillian 0.74 and earlier, and Trillian Pro 2.01 and earlier, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

7.5CVSS8.1AI score0.03243EPSS

CVE•added 2008/12/10 6:44 a.m.•40 views

CVE-2008-5401

Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsing."

10CVSS7.8AI score0.26693EPSS

CVE•added 2007/10/31 4:0 p.m.•38 views

CVE-2002-2390

Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.

10CVSS8.4AI score0.04659EPSS

CVE•added 2005/08/16 4:0 a.m.•38 views

CVE-2004-2370

Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name.

7.5CVSS8.5AI score0.05421EPSS

CVE•added 2008/12/10 6:44 a.m.•38 views

CVE-2008-5402

Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."

10CVSS7.5AI score0.1877EPSS

CVE•added 2003/04/02 5:0 a.m.•35 views

CVE-2002-1486

Multiple buffer overflows in the IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service and possibly execute arbitrary code via (1) a large response from the server, (2) a JOIN with a long channel name, (3) a long "raw 221" message, (4) a PRIVMSG wi...

7.5CVSS8.3AI score0.49183EPSS

CVE•added 2003/08/18 4:0 a.m.•35 views

CVE-2003-0520

Trillian 1.0 Pro and 0.74 Freeware allows remote attackers to cause a denial of service (crash) via a TypingUser message in which the "TypingUser" string has been modified.

5CVSS7AI score0.00655EPSS

CVE•added 2003/04/02 5:0 a.m.•33 views

CVE-2002-1487

The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) by sending the raw messages (1) 206, (2) 211, (3) 213, (4) 214, (5) 215, (6) 217, (7) 218, (8) 243, (9) 302, (10) 317, (11) 324, (12) 332, (13) 333, (14) 352, and (15) 367.

5CVSS7AI score0.15177EPSS

CVE•added 2008/05/23 3:32 p.m.•29 views

CVE-2008-2409

Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.

9.3CVSS8.2AI score0.17024EPSS

CVE•added 2003/04/02 5:0 a.m.•27 views

CVE-2002-1488

The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) via a PART message with (1) a missing channel or (2) a channel that the Trillian user is not in.

5CVSS7AI score0.04472EPSS

CVE•added 2003/04/02 5:0 a.m.•26 views

CVE-2002-1485

The AIM component of Trillian 0.73 and 0.74 allows remote attackers to cause a denial of service (crash) via certain strings such as "P > O

5CVSS6.9AI score0.0057EPSS