Hi, about the bug, Jabber for Windows queries the file c:\dev\urandom during operation. /dev/urandom is the random number seed file on unix systems, however it is not a file that is normally present on the windows platform. Random numbers are normally used when establishing secure connections. With this file being easy to create on the windows platform, the random number data can be fixed and therefore the numbers used to generate the ssl connection can be fixed. This would allow an attacker to decrypt any secure communications made by the Jabber client.
greetings!