Vulnerabilities > CVE-2004-2370 - Remote Security vulnerability in Cerulean Studios Trillian and Trillian PRO

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

cerulean-studios

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name.

Vulnerable Configurations

Part	Description	Count
Application	Cerulean_Studios Cerulean Studios Trillian 0.71 Cerulean Studios Trillian 0.73 Cerulean Studios Trillian 0.74 Cerulean Studios Trillian 0.74B Cerulean Studios Trillian 0.74C Cerulean Studios Trillian 0.74D Cerulean Studios Trillian 0.74E Cerulean Studios Trillian 0.74F Cerulean Studios Trillian 0.74G Cerulean Studios Trillian 0.725 Cerulean Studios Trillian PRO 1.0 Cerulean Studios Trillian PRO 2.0 Cerulean Studios Trillian PRO 2.01	13

Summary

Vulnerable Configurations

References