23 matches found
CVE-2014-5810
The SGK Hizmet Dokumu 4a (tr.gov.sgk.hizmetDokumu4a) Android app, version 1.103, does not verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. Exploit details, affected components beyond the Android app, a...
CVE-2014-5810
The SGK Hizmet Dokumu 4a aka tr.gov.sgk.hizmetDokumu4a application 1.103 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Cross site request forgery (csrf)
The Downlevel DB2RA Support component in IBM DB2 9.1 before Fixpak 4a allows remote attackers to cause a denial of service instance crash via a crafted CONNECT data stream that simulates a V7 client connect request...