[quote]Cerulean co-founder and CEO Scott Werndorfer said the buffer-related vulnerability is of “extremely low risk.” In an e-mail sent to CNET News.com on Friday, he said that attackers would need to construct an entire fake IM software client for the sole purpose of sending a malicious request to a Trillian user. That person would then have to actually accept that message request in order for the attacker to take advantage of the flaw, he said.[/quote]
Obviously if the co-founder knows about it and says its extremely low risk who are we to disagree? It doesn’t seem that this company is just out for itself like some others I won’t mention.
http://news.com.com/Trillian+IM+flaw+exposed/2100-7349_3-5637029.html
Loading ...
