CVE-2007-2418

CVE-2007-2418

EPSS 6.5%

Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs during encoding.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://blog.ceruleanstudios.com/?p=131 http://dvlabs.tippingpoint.com/advisory/TPTI-07-06 http://osvdb.org/35720 https://exchange.xforce.ibmcloud.com/vulnerabilities/34059 http://www.securityfocus.com/archive/1/467439/100/0/threaded http://www.securityfocus.com/bid/23781