Description
Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
Affected products
- cerulean_studios / trillian2.0 – 2.0
- cerulean_studios / trillian3.0 – 3.0
- cerulean_studios / trillian3.1 – 3.1
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/14689
- MAILING_LISThttp://marc.info/?l=bugtraq&m=111171416802350&w=2