4 matches found
CVE-2014-6759
The Downton Abbey Fan Portal aka com.downton.abbey.fan.portal application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Downton Abbey Fan Portal aka com.downton.abbey.fan.portal application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6759
The Downton Abbey Fan Portal Android app (com.downton.abbey.fan.portal) version 1.0 does not verify SSL X.509 certificates, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. Root cause: lack of certificate validation. Impact: confidentiality of d...
CVE-2014-6759
The Downton Abbey Fan Portal aka com.downton.abbey.fan.portal application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...