CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2008

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile15.72th
PublishedApr 29, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in the Display Names message feature in Cerulean Studios Trillian Basic and Pro 3.1.9.0 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long nickname in an MSN protocol message.

Affected Platforms (CPE)

πŸ“¦
Cerulean Studios

Trillian

= 3.1.9.0
πŸ“¦
Cerulean Studios

Trillian

= 3.1.9.0

References & Advisories

πŸ”— http://secunia.com/advisories/29952
πŸ”— http://securityreason.com/securityalert/3849
πŸ”— http://www.securityfocus.com/archive/1/491281/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/28925
πŸ”— http://www.vupen.com/english/advisories/2008/1368/references
πŸ”— http://secunia.com/advisories/29952
πŸ”— http://securityreason.com/securityalert/3849
πŸ”— http://www.securityfocus.com/archive/1/491281/100/0/threaded

Related Vulnerabilities

CVE-2007-241810.0

Heap-based buffer overflow in the Rendezvous / Extensible Messaging and Presence Protocol (XMPP) component (plugins\rendezvous.dll...

CVE-2008-540310.0

Heap-based buffer overflow in the XML parser in the AIM plugin in Trillian before 3.1.12.0 allows remote attackers to execute arbi...

CVE-2002-239010.0

Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a ...

CVE-2008-540110.0

Stack-based buffer overflow in the image tooltip implementation in Trillian before 3.1.12.0 allows remote attackers to execute arb...