September 10th, 2004, 13:25 PM
Old and Cranky
Trillian MSN Module Messenger Server Overflow
Original Article found here.
OSVDB ID: 9777
Disclosure Date: Sep 8, 2004
Trillian contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a boundary error within the MSN module occurs. It is possible that the flaw may allow a malicious to gain access to the target system resulting in a loss of integrity.
This vulnerability can be exploited to create a buffer overflow by sending a long string, approximately 4096 bytes in length, followed by a new line character from an MSN messenger server.
To exploit this flaw an attacker must either change intercepted traffic sent from an MSN messenger server to the target or get the target to connect to a malicious MSN messenger server.
Remote/Network Access Required
Loss Of Integrity
Cerulean Studios Trillian 0.74i
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Generic Exploit URL: http://unsecure.altervista.org/security/trillianbof.c
ISS X-Force ID: 17292
Secunia Advisory ID: 12487
Vendor URL: http://www.trillian.cc/
Vendor URL: http://www.ceruleanstudios.com/
Other Advisory URL: http://unsecure.altervista.org/security/trillian.htm
Security Mail List Post: http://archives.neohapsis.com/archiv...4-09/0069.html
Security Tracker: 1011186
This entry was last updated on Sep 9, 2004. If you have additional information or corrections for this vulnerability please submit them to OSVDB Moderators.
September 10th, 2004, 14:26 PM
thanks for the heads up rik thats all I use for IM's is trillian. guess I gotta use msn til they get a patch for this.
September 11th, 2004, 06:59 AM
Would it be ok to use Trillian but no the MSN component?
--- 0wN3D by 3gG ---