Trillian Vulnerability – Security Flaw Found in Trillian IM Client

   8/19/2005 |  3/25/2005 |  4 Comments
Category: Security
The Internet Patrol default featured image
Share the knowledge

CNet news is reporting today that a potentially serious security flaw has been found in the Trillian instant messaging client. Trillian is an instant messaging (IM) software which allows users to interact with people using many different IM services, such as AOL Instant Messenger and MSN Messenger, using just one instant messaging client (Trillian) instead of having to run each instant messenger software for each service separately.

A large number of people use Trillian, and not surprisingly, as it has been estimated that at least 25% of home users instant message with people on at least two different IM networks at the same time.

The security hole discovered in Trillian will allow a malicious hacker to shut down programs running on the target machine, and even to take control of the entire computer.

Trillian’s CEO, Scott Werndorfer, played the flaw down as being “extremely low risk”, stating that the hacker would need to create a fake instant messaging software, then send a message to the Trillian user, and then have the user accept the message. Aunty’s not so sure that would be so difficult for even the average script kiddie, let alone today’s sophisticated hacker.
Werndorfer also promised that the hole would be fixed in the next release of Trillian, and cautioned users in the meantime to be very careful when accepting file transfers and other communications from people who are not known to them.

This seems to be the month for instant messenger attacks, with worms targetting MSN Messenger and phishers attacking Yahoo Messenger.

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

Get New Internet Patrol Articles by Email!

The Internet Patrol is completely free, and reader-supported. Your tips via CashApp, Venmo, or Paypal are appreciated! Receipts will come from ISIPP.

CashApp us Square Cash app link

Venmo us Venmo link

Paypal us Paypal link

 

More from the Internet Patrol:

Urgent: Update Firefox NOW! In Rare Move Immediate Firefox Update Urged by Homeland Security
Paypal.me an Open Invitation for Scammers
Millions of Iphones and iPads at Risk as Apple Rushes Security Update
Stop Using Internet Explorer Immediately, Warns Homeland Security
The getaddrinfo Vulnerability that Has Everyone Freaking Out Explained
Hackers Read Your Screen in Your Eyeglasses, Teapots, and Other Reflective Objects
Control Your Car Over the Internet with the Internet Controlled Car!
Target Credit Card Breach: Data Stolen for All Sales Between 11/27 and 12/15

Share the knowledge

4 thoughts on “Trillian Vulnerability – Security Flaw Found in Trillian IM Client

  1. I’ve switched to Jabber protocol and I am using Psi as my main instant messaging client now. Much happier ever since. I’ve been using MSN before but it is too childish and too many viruses and worms come to your computer thru it.

    Reply

  2. I switched to Jabber protocol and I’m currently using Psi as my instant messaging client. Much happier ever since.

    Reply

  3. It only affects the Yahoo Messenger component, and you have to accept a file transfer request.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.