CVE-2014-7770
The CVE-2014-7770 entry concerns the Lagu POP Indonesia Android app (package com.lagu.pop.indonesia.xygwphqpuomclljvaa), version 2.0, which does not verify X.509 certificates when connecting to SSL servers. This behavior enables man-in-the-middle attackers to spoof servers and obtain sensitive in...