Ceruleanstudios : Security Vulnerabilities, CVEs,
Buffer overflow in the XML parser in Trillian 3.1.9.0, and possibly earlier, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DTD file.
Max CVSS
9.3
EPSS Score
6.21%
Published
2009-03-31
Updated
2018-10-11
Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a malformed XML tag.
Max CVSS
10.0
EPSS Score
70.75%
Published
2008-12-10
Updated
2018-10-11
Double free vulnerability in the XML parser in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a crafted XML expression, related to the "IMG SRC ID."
Max CVSS
10.0
EPSS Score
25.09%
Published
2008-12-10
Updated
2018-10-11
Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arbitrary code via a long image filename, related to "AIM IMG Tag Parsing."
Max CVSS
10.0
EPSS Score
71.46%
Published
2008-12-10
Updated
2018-10-11
Heap-based buffer overflow in the XML parsing functionality in talk.dll in Cerulean Studios Trillian Pro before 3.1.10.0 allows remote attackers to execute arbitrary code via a malformed attribute in an IMG tag.
Max CVSS
9.3
EPSS Score
15.18%
Published
2008-05-23
Updated
2017-08-08
Stack-based buffer overflow in AIM.DLL in Cerulean Studios Trillian before 3.1.10.0 allows user-assisted remote attackers to execute arbitrary code via a long attribute value in a FONT tag in a message.
Max CVSS
9.3
EPSS Score
15.18%
Published
2008-05-23
Updated
2018-10-11
6 vulnerabilities found