3 matches found
CVE-2014-7064
The ben10 omniverse walkthrough aka com.wben10omniverse2walkthrough application 0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7064
The ben10 omniverse walkthrough aka com.wben10omniverse2walkthrough application 0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7064
The CVE-2014-7064 entry concerns the Android app ben10 omniverse walkthrough (com.wben10omniverse2walkthrough) version 0.7, where TLS/SSL certificate validation is not performed. This missing certificate verification enables man-in-the-middle attackers to spoof SSL servers and obtain sensitive in...