Vulnerabilities > Cerulean Studios > Trillian
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-04-02 | CVE-2002-1488 | Denial Of Service vulnerability in Cerulean Studios Trillian 0.74 The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) via a PART message with (1) a missing channel or (2) a channel that the Trillian user is not in. | 5.0 |
2003-04-02 | CVE-2002-1487 | Denial Of Service vulnerability in Cerulean Studios Trillian 0.74 The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) by sending the raw messages (1) 206, (2) 211, (3) 213, (4) 214, (5) 215, (6) 217, (7) 218, (8) 243, (9) 302, (10) 317, (11) 324, (12) 332, (13) 333, (14) 352, and (15) 367. | 5.0 |
2003-04-02 | CVE-2002-1486 | Buffer Overflow vulnerability in Cerulean Studios Trillian 0.725/0.73/0.74 Multiple buffer overflows in the IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service and possibly execute arbitrary code via (1) a large response from the server, (2) a JOIN with a long channel name, (3) a long "raw 221" message, (4) a PRIVMSG with a long nickname, or (5) a long response from an IDENT server. | 7.5 |
2003-04-02 | CVE-2002-1485 | Remote Denial Of Service vulnerability in Cerulean Studios Trillian 0.73/0.74 The AIM component of Trillian 0.73 and 0.74 allows remote attackers to cause a denial of service (crash) via certain strings such as "P > O < C". | 5.0 |
2002-12-31 | CVE-2002-2390 | Buffer Errors vulnerability in Cerulean Studios Trillian and Trillian PRO Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request. | 10.0 |
2002-12-31 | CVE-2002-2366 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73 Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml. | 6.8 |
2002-12-31 | CVE-2002-2173 | Buffer Overflow vulnerability in Trillian IRC Module Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message. | 7.5 |
2002-12-31 | CVE-2002-2162 | Unspecified vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73 Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts. | 4.6 |
2002-12-31 | CVE-2002-2156 | Remote Security vulnerability in Cerulean Studios Trillian 0.73 Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response. | 7.5 |
2002-12-31 | CVE-2002-2155 | Unspecified vulnerability in Cerulean Studios Trillian 0.725/0.73 Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name. | 7.5 |