NVD

Id
54645  
Name
CVE-2007-2478  
Description
Multiple heap-based buffer overflows in the IRC component in Cerulean Studios Trillian Pro before 3.1.5.1 allow remote attackers to corrupt memory and possibly execute arbitrary code via (1) a URL with a long UTF-8 string, which triggers the overflow when the user highlights it, or (2) a font HTML tag with a face attribute containing a long UTF-8 string.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-05-02  
Modified Date
2012-11-05  
Seq
2007-2478  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
277370 54645 CVE-2007-2478 http://blog.ceruleanstudios.com/?p=131  View
277371 54645 CVE-2007-2478 20070501 Cerulean Studios Trillian Multiple IRC Vulnerabilities  View
277372 54645 CVE-2007-2478 23730  View
277373 54645 CVE-2007-2478 1017982  View
277374 54645 CVE-2007-2478 ADV-2007-1596  View
277375 54645 CVE-2007-2478 trillian-urlhighlight-bo(33985)  View
277376 54645 CVE-2007-2478 trillian-fontface-bo(33986)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53275 JVNDB-2007-001967 Cerulean Studios Trillian Pro の IRC コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性 Cerulean Studios Trillian Pro の IRC コンポーネントには、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2007-2478 25833 CVE-2007-2478 54645 9.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001967.html 2007-05-02 2012-06-26 View