|
Family: Windows --> Category: infos
Trillian Multiple HTTP Responses Buffer Overflow Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Acertains the version of Trillian.exe
Detailed Explanation for this Vulnerability Test
Synopsis :
A possible hacker may be able to execute arbitrary code on the remote host.
Description :
The remote host has the Trillian program installed.
Trillian is a Peer2Peer client that allows users to chat and share files
with other users across the world.
The remote version of this software is vulnerable to several buffer overflows
when processing malformed responses.
A possible hacker could exploit these flaws to execute arbitrary code on the remote
host. To exploit these flaws, a possible hacker would need to divert several HTTP
requests made by the remote host (through DNS poisoning) to a rogue HTTP
server sending malformed data.
Solution :
Upgrade to a version newer than 3.1.0.121
Threat Level:
Medium / CVSS Base Score : 6
(AV:R/AC:H/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|