CVE-2002-1487
published 2003-04-02CVE-2002-1487: The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) by sending the raw messages (1) 206, (2)…
PriorityP423medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
13.64%
96.0th percentile
The IRC component of Trillian 0.73 and 0.74 allows remote malicious IRC servers to cause a denial of service (crash) by sending the raw messages (1) 206, (2) 211, (3) 213, (4) 214, (5) 215, (6) 217, (7) 218, (8) 243, (9) 302, (10) 317, (11) 324, (12) 332, (13) 333, (14) 352, and (15) 367.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cerulean_studios | trillian | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Trillian 0.74 - Remote Denial of Service
exploitdb·2003-08-01
CVE-2002-1487 Trillian 0.74 - Remote Denial of Service
Trillian 0.74 - Remote Denial of Service
---
/*
[--------------------------------------------]
[:::::::::::::::::: trillian 0.7*(d patch) ]
[:::::Denial:of:Service::simple:exploit::]
[-----------------------------[l0bstah]-----]
[usage :: ]
[ : trillah name attacked-nick ]
[ ]
[comment:: after patch .74d, exploits, ]
[ wich use damage (~4095 data) ]
[ not work, but this exploit ]
[ work at any patch. ]
[ ]
[P.S. irc specification include rull: ]
[510 characters maximum allowed for ]
[the command and its parameters... ]
[that is why szBuf has 570 length... ]
[--------------------------------------------]
*/
#include
#include
#include
#include
#define port 4384
#define bfsize 540
#define rptimes 1000
WSADATA wsadata;
SOCKADDR_IN sa;
SOCKET s;
LPHOSTENT lpHostEntry;
int SockAddr = size
Exploit-DB
Trillian 0.74 - IRC Raw Messages Denial of Service
exploitdb·2002-09-22
CVE-2002-1487 Trillian 0.74 - IRC Raw Messages Denial of Service
Trillian 0.74 - IRC Raw Messages Denial of Service
---
// source: https://www.securityfocus.com/bid/5775/info
A vulnerability has been reported for Trillian. Reportedly, Trillian is prone to a denial of service condition when certain IRC raw messages are received by the client.
This may be exploited by a malicious server.
/* Trillian-Dos.c
Author: Lance Fitz-Herbert
Contact: IRC: Phrizer, DALnet - #KORP
ICQ: 23549284
Exploits Multiple Trillian DoS Flaws:
Raws 206, 211, 213, 214, 215, 217, 218, 243, 302, 317, 324, 332, 333,
352, 367
Part Flaw
Data length flaw.
Tested On Version .74
Compiles with Borland 5.5 Commandline Tools.
These Examples Will Just DoS The Trillian Client,
*/
#include
#include
#include
#include
SOCKET s;
#define SERVER ":server "
#define PART ":nick!ident@addre
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-09/0268.htmlhttp://www.iss.net/security_center/static/10161.phphttp://www.securityfocus.com/bid/5775http://archives.neohapsis.com/archives/bugtraq/2002-09/0268.htmlhttp://www.iss.net/security_center/static/10161.phphttp://www.securityfocus.com/bid/5775
2003-04-02
Published