2 matches found
Demaecan for Android SSL证书校验安全绕过漏洞
Bugtraq ID:66247 CVE ID:CVE-2014-1976 Demaecan for Android是一款基于安卓系统的应用。 Demaecan for Android不正确校验SSL服务器证书,允许可中间人攻击的攻击者伪造证书窃听敏感信息。 0 Demaecan for Android 用户可联系厂商获得相应的升级或补丁程序: https://play.google.com/store/apps/details?id=com.demaecan.androidapp&hl=ja...
CVE-2014-1976
Demaecan for Android (2.1.0 and earlier) does not verify SSL/TLS X.509 certificates, enabling MITM attackers to spy on encrypted traffic by presenting a crafted certificate. Affected component: SSL certificate verification in the Android app. Impact: potential information disclosure from intercep...