Trillian Vulnerability – Security Flaw Found in Trillian IM Client

The Internet Patrol - Patrolling the Internet for You

CNet news is reporting today that a potentially serious security flaw has been found in the Trillian instant messaging client. Trillian is an instant messaging (IM) software which allows users to interact with people using many different IM services, such as AOL Instant Messenger and MSN Messenger, using just one instant messaging client (Trillian) instead of having to run each instant messenger software for each service separately.

A large number of people use Trillian, and not surprisingly, as it has been estimated that at least 25% of home users instant message with people on at least two different IM networks at the same time.


The security hole discovered in Trillian will allow a malicious hacker to shut down programs running on the target machine, and even to take control of the entire computer.

Trillian’s CEO, Scott Werndorfer, played the flaw down as being “extremely low risk”, stating that the hacker would need to create a fake instant messaging software, then send a message to the Trillian user, and then have the user accept the message. Aunty’s not so sure that would be so difficult for even the average script kiddie, let alone today’s sophisticated hacker.
Werndorfer also promised that the hole would be fixed in the next release of Trillian, and cautioned users in the meantime to be very careful when accepting file transfers and other communications from people who are not known to them.

This seems to be the month for instant messenger attacks, with worms targetting MSN Messenger and phishers attacking Yahoo Messenger.

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

 

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

4 thoughts on “Trillian Vulnerability – Security Flaw Found in Trillian IM Client

  1. I’ve switched to Jabber protocol and I am using Psi as my main instant messaging client now. Much happier ever since. I’ve been using MSN before but it is too childish and too many viruses and worms come to your computer thru it.

  2. I switched to Jabber protocol and I’m currently using Psi as my instant messaging client. Much happier ever since.

  3. It only affects the Yahoo Messenger component, and you have to accept a file transfer request.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.