VULHUB ™

The Trillian instant messaging client uses weak encryption to store saved authentication credentials for instant messaging services. The credentials are encrypted by using XOR with a static key that is used with every installation of the software. Local attackers may potentially exploit this weakness to gain access to another user's instant messaging credentials.

The Trillian instant messaging client uses weak encryption to store saved authentication credentials for instant messaging services. The credentials are encrypted by using XOR with a static key that is used with every installation of the software. Local attackers may potentially exploit this weakness to gain access to another user's instant messaging credentials.