3 matches found
CVE-2014-5565
The GadgetTrak Mobile Security aka com.activetrak.android.app application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The GadgetTrak Mobile Security aka com.activetrak.android.app application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5565
The CVE-2014-5565 entry concerns GadgetTrak Mobile Security (package com.activetrak.android.app) for Android, version 1.6, which does not verify X.509 certificates from SSL servers. This allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...