6 matches found
EUVD-2014-5736
Malware in sbrugna...
Maleficent Free Fall - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Maleficent Free Fall published at the 'play' market has multiple vulnerabilities...
CVE-2014-5849
The Maleficent Free Fall aka com.disney.maleficentgoo application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Double free
The Maleficent Free Fall aka com.disney.maleficentgoo application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5849
The Maleficent Free Fall aka com.disney.maleficentgoo application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5849
The CVE-2014-5849 entry concerns the Maleficent Free Fall Android app (package com.disney.maleficent_goo) v1.2.0. The vulnerability is failure to verify X.509 certificates when connecting to SSL servers, enabling MITM attackers to spoof servers and access sensitive data via a crafted certificate....