Vulnerability Details CVE-2002-2390
Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.047
EPSS Ranking 88.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0206.html
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0224.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2002-September/001890.html
- http://www.iss.net/security_center/static/10118.php
- http://www.securityfocus.com/bid/5733
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0206.html
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0224.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2002-September/001890.html
- http://www.iss.net/security_center/static/10118.php
- http://www.securityfocus.com/bid/5733
Products affected by CVE-2002-2390
-
cpe:2.3:a:cerulean_studios:trillian:0.73
-
cpe:2.3:a:cerulean_studios:trillian:0.74
-
cpe:2.3:a:cerulean_studios:trillian_pro:1.0