Bugtraq: Cerulean Studios Trillian 0.74i Buffer Overflow in MSN module exploit

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Cerulean Studios Trillian 0.74i Buffer Overflow in MSN module exploit

From: "Jérôme" ATHIAS <jerome.athias () caramail com>
Date: 8 Sep 2004 04:38:27 -0000



DATE
08/09/2004

PRODUCT
Trillian is a chat client currently supporting IRC, AIM, ICQ, MSN Messenger, and Yahoo! Messenger. (from readme.txt 
file)

DETAILS
A buffer overflow vulnerability in basic edition version 0.74i (latest version) occours in the MSN module when 
receiving a string of around 4096 bytes ended with a newline character from an MSN messenger server. This vulnerability 
is remotely exploitable but require the use of the man-in-the-middle technique.

EXPLOIT
See attached file trillianbof.c

VENDOR STATUS
I notified this vulnerability to the vendor on 31/08/04 but they haven't reply.

http://unsecure.altervista.org/security/trillian.htm

Regards,
JÃ©rÃ´me ATHIAS

By Date By Thread

Current thread:

Cerulean Studios Trillian 0.74i Buffer Overflow in MSN module exploit Jérôme (Sep 08)