http://isc.sans.org/diary.php?storyid=7000&rss CORE security technologies published a vulnerability in libpurple. Libpurple is the backend frame work to many Instant Messenger clients.