CVE-2009-4831

Name of the Vulnerable Software and Affected Versions: Cerulean Studios Trillian version 3.1 Basic

Description: The issue arises from the lack of SSL certificate checks during MSN authentication, allowing remote attackers to exploit this and obtain MSN credentials through a man-in-the-middle attack using a spoofed SSL certificate.

Recommendations: For Cerulean Studios Trillian version 3.1 Basic, consider disabling MSN authentication until a patch is available that includes proper SSL certificate checks to prevent man-in-the-middle attacks.