CVE-2009-4831

Cerulean Studios Trillian 3.1 Basic does not check SSL certificates during MSN authentication, which allows remote attackers to obtain MSN credentials via a man-in-the-middle attack with a spoofed SSL certificate.

Date published : 2010-04-29

http://www.securityfocus.com/bid/35509

http://www.securityfocus.com/archive/1/504573/100/0/threaded