CVE-2014-5738
The Garfield's Defense (com.webprancer.google.garfieldDefense) Android app, version 1.5.4, is described as not verifying X.509 certificates from SSL servers. This vulnerability allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Reported...