CVE-2002-1486 | Vulnerability Database | Aqua Security

Multiple buffer overflows in the IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service and possibly execute arbitrary code via (1) a large response from the server, (2) a JOIN with a long channel name, (3) a long raw 221 message, (4) a PRIVMSG with a long nickname, or (5) a long response from an IDENT server.

Affected Software

Name	Vendor	Start Version	End Version
Trillian	Cerulean_studios	0.73 (including)	0.73 (including)
Trillian	Cerulean_studios	0.74 (including)	0.74 (including)
Trillian	Cerulean_studios	0.725 (including)	0.725 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2002-09/0258.html
http://archives.neohapsis.com/archives/bugtraq/2002-09/0266.html
http://archives.neohapsis.com/archives/bugtraq/2002-09/0268.html
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0139.html
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0140.html
http://www.iss.net/security_center/static/10150.php
http://www.iss.net/security_center/static/10151.php
http://www.iss.net/security_center/static/10163.php
http://www.securityfocus.com/bid/5765
http://www.securityfocus.com/bid/5769
http://www.securityfocus.com/bid/5777
http://archives.neohapsis.com/archives/bugtraq/2002-09/0258.html
http://archives.neohapsis.com/archives/bugtraq/2002-09/0266.html
http://archives.neohapsis.com/archives/bugtraq/2002-09/0268.html
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0139.html
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0140.html
http://www.iss.net/security_center/static/10150.php
http://www.iss.net/security_center/static/10151.php
http://www.iss.net/security_center/static/10163.php
http://www.securityfocus.com/bid/5765
http://www.securityfocus.com/bid/5769
http://www.securityfocus.com/bid/5777

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1486
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html