CVSS: 9.8EPSS: 3%CPEs: 7EXPL: 0CVE-2004-2304
https://notcve.org/view.php?id=CVE-2004-2304
31 Dec 2004 — Integer overflow in Trillian 0.74 and earlier, and Trillian Pro 2.01 and earlier, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow. • http://lists.seifried.org/pipermail/security/2004-February/001869.html •
CVSS: 9.8EPSS: 5%CPEs: 13EXPL: 0CVE-2004-2370
https://notcve.org/view.php?id=CVE-2004-2370
31 Dec 2004 — Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-February/017766.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0520
https://notcve.org/view.php?id=CVE-2003-0520
10 Jul 2003 — Trillian 1.0 Pro and 0.74 Freeware allows remote attackers to cause a denial of service (crash) via a TypingUser message in which the "TypingUser" string has been modified. Trillian 1.0 Pro y 0.74 Freeware permite a atacantes remotos causar una denegación de servicio (caída) mediente un mensaje TypingUser en el que la cadena "TypingUser" ha sido modificada. • http://marc.info/?l=bugtraq&m=105735714318026&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1485
https://notcve.org/view.php?id=CVE-2002-1485
18 Mar 2003 — The AIM component of Trillian 0.73 and 0.74 allows remote attackers to cause a denial of service (crash) via certain strings such as "P > O < C". El componente AIM de Trillian 0.73 y 0.74 permite a atacantes remotos provocar una denegación de servicio (caída) mediante determinadas cadenas de caracteres tales como "P > O < C". • http://archives.neohapsis.com/archives/bugtraq/2002-09/0282.html •
CVSS: 9.8EPSS: 57%CPEs: 3EXPL: 8CVE-2002-1486 – Trillian 0.725/0.73/0.74 - IRC User Mode Numeric Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1486
18 Mar 2003 — Multiple buffer overflows in the IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service and possibly execute arbitrary code via (1) a large response from the server, (2) a JOIN with a long channel name, (3) a long "raw 221" message, (4) a PRIVMSG with a long nickname, or (5) a long response from an IDENT server. Multiples desbordamiento de búfer en el componente IRC de Trillian 0.73 y 0.74 permite a servidores IRC remotos malintencionados causar la Denegació... • https://www.exploit-db.com/exploits/21816 •
CVSS: 7.5EPSS: 15%CPEs: 1EXPL: 4CVE-2002-1487 – Trillian 0.74 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2002-1487
18 Mar 2003 — The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) by sending the raw messages (1) 206, (2) 211, (3) 213, (4) 214, (5) 215, (6) 217, (7) 218, (8) 243, (9) 302, (10) 317, (11) 324, (12) 332, (13) 333, (14) 352, and (15) 367. El componente IRC de Trillian 0.73 y 0.74 permite a servidores IRC remotos malintencionados causar la Denegación de Servicio (por caida)mediante el envío de mensajes 'no preparados' (raw messages): 206, 211, 213, 214, 215,... • https://www.exploit-db.com/exploits/73 •
CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 3CVE-2002-1488 – Trillian 0.74 - IRC PART Message Denial of Service
https://notcve.org/view.php?id=CVE-2002-1488
18 Mar 2003 — The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) via a PART message with (1) a missing channel or (2) a channel that the Trillian user is not in. El componente IRC de Trillian 0.73 y 0.74 permite a servidores IRC maliciosos causar la Denegación de Servicos (DoS) (por caida) mediante un mensaje PART con: un canal desaparecido/no existente. un canal al que el usuario de Trillian no esta conectado. user is not in. • https://www.exploit-db.com/exploits/21821 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2002-2155
https://notcve.org/view.php?id=CVE-2002-2155
31 Dec 2002 — Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name. • http://www.iss.net/security_center/static/9761.php •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2002-2156
https://notcve.org/view.php?id=CVE-2002-2156
31 Dec 2002 — Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response. • http://www.securityfocus.com/archive/1/285639 •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 2CVE-2002-2162 – Trillian Instant Messaging 0.x - Credential Encryption
https://notcve.org/view.php?id=CVE-2002-2162
31 Dec 2002 — Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts. • https://www.exploit-db.com/exploits/21781 •