364 matches found
Default credentials
The Thycotic Password Manager Secret Server application through 2.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2015-4094
The Thycotic Password Manager Secret Server application through 2.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2015-4094
The CVE-2015-4094 issue affects Thycotic Password Manager Secret Server for iOS up to version 2.3. The root cause is failure to validate X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and access sensitive information via a crafted certificate. There are multiple con...
Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability
Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability -- http://www.info-sec.ca/advisories/Thycotic-SecretServer.html Overview "With the Password Manager Secret Server app, you can access passwords for an EXISTING on-premise Secret Server or Secret Server...