CVE-2014-7700
The CVE-2014-7700 entry concerns the Android app Flying Fox (com.chillingo.slyfoxfree.android.aja) version 1.0.0, which does not verify X.509 certificates from SSL servers. This insecure TLS handling can let man-in-the-middle attackers spoof servers and obtain sensitive information via a crafted ...