CVE-2007-2418

Cerulean Studios Trillian Pro <3.1.5.1 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs during encoding.

References (6)

Core 6
Core References
Various Sources x_refsource_confirm
http://blog.ceruleanstudios.com/?p=131
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35720
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23781
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34059
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/467439/100/0/threaded

Scores

EPSS 0.0649
EPSS Percentile 93.0%

Details

CWE
CWE-119
Status published
Products (1)
cerulean_studios/trillian_pro < 3.1.5.0
Published May 02, 2007
Tracked Since Feb 18, 2026