5 matches found
EUVD-2014-6634
Malware in sbrugna...
CVE-2014-6756
The Reddit Aww aka org.biais.redditawww application 1.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Reddit Aww aka org.biais.redditawww application 1.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6756
The CVE-2014-6756 entry affects the Reddit Aww (org.biais.redditawww) Android app v1.2.1, where the app does not verify X.509 certificates from SSL servers. This certificate validation bypass enables MITM attackers to spoof legitimate servers and read or tamper with sensitive data. The NVD entry ...
CVE-2014-6756
The Reddit Aww aka org.biais.redditawww application 1.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...