Vulnerabilities > CVE-2005-2444 - Information Disclosure vulnerability in Cerulean Studios Trillian PRO 3.1Build121

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

cerulean-studios

NVD

Published: 2005-08-03

Updated: 2017-07-11

Summary

Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Cerulean_Studios Cerulean Studios Trillian PRO 3.1_Build_121	1

References

http://marc.info/?l=bugtraq&m=112274667603628&w=2
http://secunia.com/advisories/16289
https://exchange.xforce.ibmcloud.com/vulnerabilities/21667