|ID||CVSS||Summary||Last (major) update||Published|
Trillian 126.96.36.199 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid
|31-01-2013 - 23:53||04-11-2012 - 17:55|
Cerulean Studios Trillian 3.1 Basic does not check SSL certificates during MSN authentication, which allows remote attackers to obtain MSN credentials via a man-in-the-middle attack with a spoofed SSL certificate.
|30-04-2010 - 00:00||29-04-2010 - 15:30|