Users who often chat on multiple instant messenger applications may be familiar with Trillian, which is an instant messenger application that allows you to connect with various IM services such as AIM, Yahoo, WindowsLive, etc.

Recently, a couple of vulnerabilities were discovered in this IM application regarding how it processed certain URIs. The first vulnerability can be exploited to automatically execute a potentially malicious file on the user’s system while the second one can be used to cause buffer overflows. To prevent the attack, it is recommended that unnecessary URIs be unregistered.