PT-2008-3529 · Cerulean Studios · Trillian
Publicado
2008-04-29
·
Atualizado
2018-10-11
·
CVE-2008-2008
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cerulean Studios Trillian Basic and Pro version 3.1.9.0
Description
The issue is related to a buffer overflow in the Display Names message feature, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long nickname in an MSN protocol message.
Recommendations
For Cerulean Studios Trillian Basic and Pro version 3.1.9.0, consider disabling the Display Names message feature until a patch is available to prevent potential exploitation.
Correção
DoS
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Trillian