CVE-2008-5401

Name of the Vulnerable Software and Affected Versions Trillian versions prior to 3.1.12.0

Description The issue is related to a stack-based buffer overflow in the image tooltip implementation, allowing remote attackers to execute arbitrary code via a long image filename. This is also related to "AIM IMG Tag Parsing."

Recommendations For versions prior to 3.1.12.0, update to version 3.1.12.0 or later to resolve the issue. As a temporary workaround, consider disabling the image tooltip feature until a patch is available. Restrict access to the image filename parameter to minimize the risk of exploitation. Avoid using long image filenames in the affected implementation until the issue is resolved.