Cerulean Studios: >> Trillian >> 0.73 Security Vulnerabilities
Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts.
CVSS Score
4.6
EPSS Score
0.001
Published
2002-12-31
Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message.
CVSS Score
7.5
EPSS Score
0.032
Published
2002-12-31
Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml.
CVSS Score
6.8
EPSS Score
0.014
Published
2002-12-31
Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.
CVSS Score
10.0
EPSS Score
0.047
Published
2002-12-31
Page 2