This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.
The remote host contains an instant messaging application which is susceptible
to a heap overflow vulnerability.
The version of Trillian installed on the remote host contains a buffer
overflow vulnerability which can be triggered when decoding a malformed
XMPP (eXtensible Messaging and Presence Protocol) message.
To exploit this flaw, an attacker would need to send a specially crafted
XMPP message to a user of this program, thus causing arbitrary code
See also :
Upgrade to Trillian 22.214.171.124 or later.
Risk factor :
High / CVSS Base Score : 7.6
CVSS Temporal Score : 5.6
Public Exploit Available : false