CVE-2014-7000
The CVE-2014-7000 entry applies to The Paul Alexander Campaign (aka hr.apps.n51261427) Android app 4.5.8, where the app does not verify X.509 certificates from SSL servers. This basic trust-bypass enables man-in-the-middle attackers to spoof servers and harvest sensitive information via a crafted...