CVE-2008-2409 | SynScan

Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2008-2409

Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.

Published: May 23, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-2409
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cerulean_studios / trillian	3.1.9.0	3.1.9.0.x
cerulean_studios / trillian	0.71	0.71.x
cerulean_studios / trillian	2.0	2.0.x
cerulean_studios / trillian	3.1.7.0	3.1.7.0.x
cerulean_studios / trillian	3.1.5.0	3.1.5.0.x
cerulean_studios / trillian	0.6351	0.6351.x
cerulean_studios / trillian	3.1.5.1	3.1.5.1.x
cerulean_studios / trillian	0.73	0.73.x
cerulean_studios / trillian	0.725	0.725.x
cerulean_studios / trillian	3.1	3.1.x
cerulean_studios / trillian	3.0	3.0.x
cerulean_studios / trillian	0.74i	0.74i.x
cerulean_studios / trillian	3.1.6.0	3.1.6.0.x
cerulean_studios / trillian	0.74	0.74.x
cerulean_studios / trillian	2.1	2.1.x