Komrade has reported a vulnerability in Trillian, which can be exploited by malicious people to compromise a user’s system.
The vulnerability is caused due to a boundary error within the MSN module. This can be exploited to cause a buffer overflow by passing an overly long string (about 4096 bytes) from a MSN messenger server.
Successful exploitation requires that a malicious person either intercepts and manipulates traffic sent from a MSN messenger server to the user or get the user's Trillian to connect to a malicious MSN messenger server.
The vulnerability has been reported in version 0.74i. Other versions may also be affected.
0 Response to “Trillian MSN Module Buffer Overflow Vulnerability”