4 matches found
CVE-2014-7430
The Flood-It aka com.appspot.eoltek.flood application 4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Flood-It aka com.appspot.eoltek.flood application 4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7430
CVE-2014-7430 affects the Flood-It Android app (package com.appspot.eoltek.flood), version 4.2. The underlying issue is failure to verify X.509 certificates when establishing SSL connections, enabling man-in-the-middle attackers to spoof servers and potentially obtain sensitive information. The C...
CVE-2014-7430
The Flood-It aka com.appspot.eoltek.flood application 4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...