CVE-2014-5670
CVE-2014-5670 affects the Android app SAS: Zombie Assault 3 (package com.ninjakiwi.sas3zombieassault), version 2.56. Root cause: the app does not verify X.509 certificates when communicating with SSL servers, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted ...