Description
Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name.
Affected products
- cerulean_studios / trillian0.73 – 0.73
- cerulean_studios / trillian0.725 – 0.725