VYPR
Unrated severityNVD Advisory· Published May 3, 2007· Updated Jun 16, 2026

CVE-2007-2478

CVE-2007-2478

Description

Multiple heap-based buffer overflows in the IRC component in Cerulean Studios Trillian Pro before 3.1.5.1 allow remote attackers to corrupt memory and possibly execute arbitrary code via (1) a URL with a long UTF-8 string, which triggers the overflow when the user highlights it, or (2) a font HTML tag with a face attribute containing a long UTF-8 string.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:cerulean_studios:trillian_pro:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:cerulean_studios:trillian_pro:*:*:*:*:*:*:*:*range: <=3.1.5.0
    • (no CPE)range: < 3.1.5.1

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.