Critical errors detected in Yahoo Messenger and Trillian

    In the Yahoo! Internet messengers Messenger and Trillian detected critical errors, using which an attacker could execute code on an attacked machine. Thus, it is possible to “spam” a spam bot or Trojan on a user's computer using a buffer overflow error.

    The development companies (Yahoo and Cerulean) have not yet commented on this event. No patches were issued to fix these vulnerabilities.

    In connection with the incident, the US-CERT organization expressed concern , which published an official message stating that the vulnerability was discovered in Trillian 3.1.6.0 and was given the status of "highly critical".

    via InfoWorld

    Also popular now: