CVE-2002-2162

Name of the Vulnerable Software and Affected Versions: Cerulean Studios Trillian versions 0.73 and earlier

Description: The issue concerns the use of weak encryption, specifically XOR, for storing user passwords in .ini files within the Trillian directory. This weakness allows local users to gain access to other user accounts.

Recommendations: For versions 0.73 and earlier, consider updating the password storage mechanism to use a more secure encryption method to protect user passwords. As a temporary workaround, restrict access to the Trillian directory and .ini files to minimize the risk of exploitation.