7 matches found
EUVD-2014-5574
Malware in sbrugna...
mountainbikethailand.com Cross Site Scripting vulnerability OBB-3913615
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Runtastic Mountain Bike GPS - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application Runtastic Mountain Bike GPS published at the 'play' market has multiple vulnerabilities...
CVE-2014-5687
The Runtastic Mountain Bike aka com.runtastic.android.mountainbike.lite application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Runtastic Mountain Bike aka com.runtastic.android.mountainbike.lite application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5687
The Runtastic Mountain Bike aka com.runtastic.android.mountainbike.lite application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5687
The CVE-2014-5687 entry affects the Runtastic Mountain Bike Android app (2.0.1) and is due to the app not verifying X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. The issue is documented across multiple sou...