6 matches found
EUVD-2014-5745
Malware in sbrugna...
Candy Blast Mania - Corrupted files, Dynamic Code Loading, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Candy Blast Mania published at the 'play' market has multiple vulnerabilities...
CVE-2014-5858
The Candy Blast aka com.appgame7.candyblast application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Candy Blast aka com.appgame7.candyblast application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5858
The Candy Blast aka com.appgame7.candyblast application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5858
The CVE-2014-5858 entry concerns the Candy Blast (com.appgame7.candyblast) Android app version 1.1.001, which fails to verify X.509 certificates from SSL servers. This weakens TLS and can permit a man-in-the-middle to spoof servers and obtain sensitive information via a crafted certificate. The p...