CVE-2014-6872
TTNET Muzik (com.ttnet.muzik) for Android, app version 3.2, has an SSL certificate validation flaw: it does not verify X.509 certificates from SSL servers. This enables a man-in-the-middle attacker on the network to spoof legitimate servers and intercept or obtain sensitive information via a craf...