3 matches found
Information disclosure
The PartyTrack library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-4881
CVE-2014-4881 concerns the PartyTrack library for Android, where the component fails to verify X.509 certificates from SSL servers. This weakness allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. The vulnerability is documented with a ...
CVE-2014-4881
The PartyTrack library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...