Trillian@2.0 Security Vulnerabilities and Issues — Trillian@2.0 CVE List

Lucene search

Cerulean StudiosTrillian2.0

6 matches found

CVE•added 2008/12/10 6:44 a.m.•41 views

CVE-2008-5403

Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a malformed XML tag.

10CVSS7.9AI score0.25557EPSS

CVE•added 2008/12/10 6:44 a.m.•40 views

CVE-2008-5401

Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsing."

10CVSS7.8AI score0.26693EPSS

CVE•added 2008/12/10 6:44 a.m.•38 views

CVE-2008-5402

Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."

10CVSS7.5AI score0.1877EPSS

CVE•added 2005/05/02 4:0 a.m.•36 views

CVE-2005-0874

Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.

5CVSS7.2AI score0.00506EPSS

CVE•added 2008/05/23 3:32 p.m.•29 views

CVE-2008-2409

Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.

9.3CVSS8.2AI score0.17024EPSS

CVE•added 2005/05/02 4:0 a.m.•26 views

CVE-2005-0875

Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.

5CVSS7.2AI score0.00483EPSS