icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Trillian IRC JOIN Remote Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running the Trillian IRC client. Trillian versions 0.73, 0.74 and possibly other versions are vulnerable to a buffer overflow, caused by improper validation of JOIN commands received from an IRC server. If a Trillian client connects to an attacker-controlled IRC server and joins a channel with a name containing more than 206 characters, the attacker could overflow a buffer and cause the victim's Trillian client to crash or execute code on the system.

Solution

No solution is known at this time.