PT-2009-2033 · Cerulean Studios · Trillian
Published
2009-03-31
·
Updated
2018-10-11
·
CVE-2008-6563
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Trillian version 3.1.9.0 and possibly earlier
Description
The issue is related to a buffer overflow in the XML parser, which can be triggered by a crafted DTD file. This can cause a denial of service, resulting in a crash, and potentially allow the execution of arbitrary code.
Recommendations
For Trillian version 3.1.9.0 and possibly earlier, at the moment, there is no information about a newer version that contains a fix for this issue.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Trillian