Описание
Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs during encoding.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 3.1.5.0 (включая)Версия до 3.1_build_121 (включая)
Одно из
cpe:2.3:a:cerulean_studios:trillian_pro:*:*:*:*:*:*:*:*
cpe:2.3:a:cerulean_studios:trillian_pro:*:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.27841
Средний
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll) for Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to execute arbitrary code via a message that triggers the overflow from expansion that occurs during encoding.
EPSS
Процентиль: 96%
0.27841
Средний
10 Critical
CVSS2
Дефекты
CWE-119