AOH :: Internet :: BX2765.HTM

AOH :: Internet :: BX2765.HTM
Trillian 3.1.9.0 DTD File Buffer Overflow

Trillian 3.1.9.0 DTD File Buffer Overflow Trillian 3.1.9.0 DTD File Buffer Overflow


Name:=0D
Trillian 3.1.9.0 DTD File Buffer Overflow=0D
=0D
=0D
Software:=0D
Trillian 3.1.9.0=0D
=0D
=0D
Vendor:=0D
Cerulean Studios=0D
=0D
=0D
Description:=0D
Trillian 3.1.9.0. Basic(and maybe minor versions and other as Pro) is vulnerable to parser xml format in .dtd file type. The explotation requires that the user download a malformed file and installed in a stixe directory and others. The bug is a function that parse .dtd files with SYSTEM and file identifier.=0D
=0D
=0D
Web:=0D
http://www.ceruleanstudios.com/=0D 
=0D
=0D
Download a poc file:=0D
http://www.p1mp4m.es/index.php?act=attach&type=post&id=18

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.