CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-2418

Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs during encoding.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.271

EPSS Ranking 96.1%

CVSS Severity

CVSS v2 Score 10.0

References

http://blog.ceruleanstudios.com/?p=131
http://dvlabs.tippingpoint.com/advisory/TPTI-07-06
http://osvdb.org/35720
http://www.securityfocus.com/archive/1/467439/100/0/threaded
http://www.securityfocus.com/bid/23781
https://exchange.xforce.ibmcloud.com/vulnerabilities/34059
http://blog.ceruleanstudios.com/?p=131
http://dvlabs.tippingpoint.com/advisory/TPTI-07-06
http://osvdb.org/35720
http://www.securityfocus.com/archive/1/467439/100/0/threaded
http://www.securityfocus.com/bid/23781
https://exchange.xforce.ibmcloud.com/vulnerabilities/34059

Products affected by CVE-2007-2418

Cerulean Studios » Trillian Pro » Version: Any

cpe:2.3:a:cerulean_studios:trillian_pro:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2418

Products

Pricing

Contact Us