CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2002-2155
https://notcve.org/view.php?id=CVE-2002-2155
31 Dec 2002 — Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name. • http://www.iss.net/security_center/static/9761.php •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 2CVE-2002-2162 – Trillian Instant Messaging 0.x - Credential Encryption
https://notcve.org/view.php?id=CVE-2002-2162
31 Dec 2002 — Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts. • https://www.exploit-db.com/exploits/21781 •
CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 0CVE-2002-2173
https://notcve.org/view.php?id=CVE-2002-2173
31 Dec 2002 — Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message. • http://www.iss.net/security_center/static/9764.php •
CVSS: 9.8EPSS: 1%CPEs: 3EXPL: 0CVE-2002-2366
https://notcve.org/view.php?id=CVE-2002-2366
31 Dec 2002 — Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml. • http://archives.neohapsis.com/archives/bugtraq/2002-08/0334.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •