4 matches found
EUVD-2014-6766
Malware in sbrugna...
Information disclosure
The PennyTalk Mobile aka net.idt.pennytalk.android application 2.0.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6888
The PennyTalk Mobile aka net.idt.pennytalk.android application 2.0.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6888
The CVE-2014-6888 entry concerns the PennyTalk Mobile Android app (version 2.0.3.0) failing to verify X.509 certificates when connecting to SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate. This mode provides the vulnera...