Results 1 to 3 of 3

Thread: Trillian MSN Module Messenger Server Overflow

  1. #1
    Old and Cranky Super Moderator rik's Avatar
    Join Date
    Aug 2003
    Location
    Watching Your every move...
    Posts
    4,688

    Trillian MSN Module Messenger Server Overflow

    Original Article found here.


    OSVDB ID: 9777
    Rating: TBD
    Disclosure Date: Sep 8, 2004


    Description:
    Trillian contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a boundary error within the MSN module occurs. It is possible that the flaw may allow a malicious to gain access to the target system resulting in a loss of integrity.



    Technical Description:
    This vulnerability can be exploited to create a buffer overflow by sending a long string, approximately 4096 bytes in length, followed by a new line character from an MSN messenger server.

    To exploit this flaw an attacker must either change intercepted traffic sent from an MSN messenger server to the target or get the target to connect to a malicious MSN messenger server.



    Vulnerability Classification:
    Remote/Network Access Required
    Infrastructure Attack
    Loss Of Integrity
    Exploit Available


    Products:
    Cerulean Studios Trillian 0.74i



    Solution:
    Currently, there are no known upgrades, patches, or workarounds available to correct this issue.



    External References:

    Generic Exploit URL: http://unsecure.altervista.org/security/trillianbof.c
    ISS X-Force ID: 17292
    Secunia Advisory ID: 12487
    Vendor URL: http://www.trillian.cc/
    Vendor URL: http://www.ceruleanstudios.com/
    Other Advisory URL: http://unsecure.altervista.org/security/trillian.htm
    Security Mail List Post: http://archives.neohapsis.com/archiv...4-09/0069.html
    Security Tracker: 1011186


    Credit:

    Komrade


    Vulnerability Status:
    This entry was last updated on Sep 9, 2004. If you have additional information or corrections for this vulnerability please submit them to OSVDB Moderators.

  2. #2
    Friendly Neighborhood Super Moderator phishhead's Avatar
    Join Date
    Apr 2002
    Location
    San Diego, Ca.
    Posts
    3,732
    thanks for the heads up rik thats all I use for IM's is trillian. guess I gotta use msn til they get a patch for this.



  3. #3
    Security Intelligence TZ Veteran cash_site's Avatar
    Join Date
    Jul 2002
    Location
    Software Paradise
    Posts
    3,852
    Would it be ok to use Trillian but no the MSN component?

    --- 0wN3D by 3gG ---

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •