CVE-2014-5956
CVE-2014-5956 affects the Android app “VPlayer Video Player” (aka me.abitno.vplayer.t), version 3.2.6. The root cause is that the app does not verify X.509 certificates from SSL servers, which can allow a man‑in‑the‑middle attacker to spoof servers and obtain sensitive information via a crafted c...