CVE-2007-3305

Name of the Vulnerable Software and Affected Versions Cerulean Studios Trillian versions 3.x through 3.1.5.0

Description A heap-based buffer overflow issue exists, allowing remote attackers to execute arbitrary code via a message sent through the MSN protocol, or possibly other protocols, with a crafted UTF-8 string. This triggers improper memory allocation for word wrapping when a window width is used as a buffer size.

Recommendations For versions 3.x through 3.1.5.0, update to version 3.1.6.0 or later to resolve the issue.