10 matches found
EUVD-2016-2322
Malware in sbrugna...
CVE-2016-1221
Jetstar App for iOS before 3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2016-1221
Jetstar App for iOS before 3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
Jetstar App for iOS before 3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2016-1221
CVE-2016-1221 affects the Jetstar App for iOS prior to v3.0.0. The issue is that the app fails to verify X.509 certificates from SSL servers, enabling a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate. Public reports across multiple sources c...
CVE-2016-1221
Jetstar App for iOS before 3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
cruises.jetstar.com XSS vulnerability
Vulnerable URL: http://cruises.jetstar.com/emailus.rvlx?message=%22%3E%3C/option%3E%3C/select%3E%3Cbody/onpageshow=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
Jetstar Airways Jetstar App for iOS Man-in-the-Middle Attack Vulnerability
Jetstar Airways Jetstar App for iOS is a suite of iOS-based applications from Jetstar Airways Australia that provide air ticket search, booking and other functions. A man-in-the-middle attack vulnerability exists in Jetstar Airways Jetstar App for iOS versions prior to 3.0.0, which originates fro...
Jetstar App for iOS fails to verify SSL server certificates
Overview Jetstar App for iOS provided by Jetstar Airways Pty Ltd. fails to verify SSL server certificates. Yuta TESHIMA of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A...
JVN#43529183: Jetstar App for iOS fails to verify SSL server certificates
Jetstar App for iOS provided by Jetstar Airways Pty Ltd. fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the application Update to the latest version according to the information provided ...