[NT] Trillian Plaintext Passwords
From: SecuriTeam (support_at_securiteam.com)
Date: 08/02/05
- Previous message: SecuriTeam: "[NT] GXT Editor Buffer Overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: list@securiteam.com Date: 2 Aug 2005 17:53:41 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Trillian Plaintext Passwords
------------------------------------------------------------------------
SUMMARY
" <http://www.ceruleanstudios.com/> Trillian is a fully featured,
stand-alone, skinnable chat client that supports AIM, ICQ, MSN, Yahoo
Messenger, and IRC."
Trillian have been found to store clear passwords on a plaintext file,
that can be accessed by any user who has access to the machine.
DETAILS
Vulnerable Systems:
* Trillian version 3.1 Basic and pro
* Trillian version 3.0 Basic and Pro
When you choose the option to check your Yahoo email in Trillian (Check
Yahoo Mail), Trillian creates a temp file in the <Install
Directory>\users\default\cache directory with a random name that contains
the Yahoo password in clear text. Further, this file is world readable,
and the logout process doesn't erase it.
ADDITIONAL INFORMATION
The information has been provided by <mailto:security@suramya.com>
Suramya Tomar .
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: SecuriTeam: "[NT] GXT Editor Buffer Overflow"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
- [NT] Trillian Remote Buffer Overflows (DirectIM, Parser)
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Trillian .74 is completely
free, ... We were only able to exploit the vulnerability with man in the middle ...
Cerulean Studios has released patch G to solve these issues. ... (Securiteam) - [NEWS] Cerulean Studios Trillian Multiple IRC Vulnerabilities
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Cerulean Studios Trillian Multiple
IRC Vulnerabilities ... Remote exploitation of multiple vulnerabilities in the Internet
Relay Chat ... (Securiteam) - [NT] Yahoo! Messenger URL Handler Remote DoS
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... A denial of service vulnerability
exists in the way Yahoo! ... When these packets are sent Yahoo! ... Messenger
version 6.0 ... (Securiteam) - [NT] Yahoo! Messenger Server Race Condition Vulnerability
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Yahoo! ... Messenger
6.0 ... Once the link is tweaked all the attackers need to do is plug it into ...
(Securiteam) - [NT] Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow Vulnerabilities
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Yahoo Messenger YVerInfo.dll
ActiveX Multiple Remote Buffer Overflow ... exploitation of multiple buffer overflow vulnerabilities
in Yahoo Inc.'s ... (Securiteam)
