Cerulean Studios : Security Vulnerabilities, CVEs, Published In 2005
Cerulean Studios Trillian 3.0 allows remote attackers to cause a denial of service (crash) via a reverse direct connection from a different client, as demonstrated using LICQ.
Max CVSS
5.0
EPSS Score
1.83%
Published
2005-10-05
Updated
2016-10-18
Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitive information.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-08-03
Updated
2017-07-11
Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
Max CVSS
5.0
EPSS Score
0.12%
Published
2005-05-02
Updated
2016-10-18
Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
Max CVSS
5.0
EPSS Score
0.32%
Published
2005-05-02
Updated
2016-10-18
Buffer overflow in Trillian 3.0 and Pro 3.0 allows remote attackers to execute arbitrary code via a crafted PNG image file.
Max CVSS
7.5
EPSS Score
4.17%
Published
2005-03-02
Updated
2016-10-18
5 vulnerabilities found