7 matches found
EUVD-2014-5594
Malware in sbrugna...
Bunny Run - Dangerous filesystem permissions, MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Bunny Run published at the 'play' market has multiple vulnerabilities...
Easter Bunny Run - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Easter Bunny Run published at the 'play' market has multiple vulnerabilities...
Bunny Run - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Bunny Run published at the 'play' market has multiple vulnerabilities...
Temple Bunny Run - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application Temple Bunny Run published at the 'play' market has multiple vulnerabilities...
Information disclosure
The Bunny Run aka com.stargirlgames.google.bunnyrun application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5707
The CVE-2014-5707 entry concerns The Bunny Run (com.stargirlgames.google.bunnyrun) Android app version 1.1.2 that does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and access sensitive information. Public sources (NVD and CVE databases) corroborate the ...