[NT] Trillian Plaintext Passwords

From: SecuriTeam (support_at_securiteam.com)
Date: 08/02/05

  • Next message: SecuriTeam: "[UNIX] Clever Copy Privileges Escalation Vulnerability" 
    To: list@securiteam.com
Date: 2 Aug 2005 17:53:41 +0200

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      Trillian Plaintext Passwords
    ------------------------------------------------------------------------

    SUMMARY

    " <http://www.ceruleanstudios.com/> Trillian is a fully featured,
    stand-alone, skinnable chat client that supports AIM, ICQ, MSN, Yahoo
    Messenger, and IRC."

    Trillian have been found to store clear passwords on a plaintext file,
    that can be accessed by any user who has access to the machine.

    DETAILS

    Vulnerable Systems:
     * Trillian version 3.1 Basic and pro
     * Trillian version 3.0 Basic and Pro

    When you choose the option to check your Yahoo email in Trillian (Check
    Yahoo Mail), Trillian creates a temp file in the <Install
    Directory>\users\default\cache directory with a random name that contains
    the Yahoo password in clear text. Further, this file is world readable,
    and the logout process doesn't erase it.

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:security@suramya.com>
    Suramya Tomar .

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

  • Next message: SecuriTeam: "[UNIX] Clever Copy Privileges Escalation Vulnerability"

    Relevant Pages

    • [NT] Trillian Remote Buffer Overflows (DirectIM, Parser)
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Trillian .74 is completely free, ... We were only able to exploit the vulnerability with man in the middle ... Cerulean Studios has released patch G to solve these issues. ...
      (Securiteam)
    • [NEWS] Cerulean Studios Trillian Multiple IRC Vulnerabilities
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Cerulean Studios Trillian Multiple IRC Vulnerabilities ... Remote exploitation of multiple vulnerabilities in the Internet Relay Chat ...
      (Securiteam)
    • [NT] Yahoo! Messenger URL Handler Remote DoS
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A denial of service vulnerability exists in the way Yahoo! ... When these packets are sent Yahoo! ... Messenger version 6.0 ...
      (Securiteam)
    • [NT] Yahoo! Messenger Server Race Condition Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Yahoo! ... Messenger 6.0 ... Once the link is tweaked all the attackers need to do is plug it into ...
      (Securiteam)
    • [NT] Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow ... exploitation of multiple buffer overflow vulnerabilities in Yahoo Inc.'s ...
      (Securiteam)