6 matches found
EUVD-2014-5573
Malware in sbrugna...
Runtastic Me: Daily Tracker - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Runtastic Me: Daily Tracker published at the 'play' market has multiple vulnerabilities...
CVE-2014-5686
The Runtastic Me aka com.runtastic.android.me.lite application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Authentication flaw
The Runtastic Me aka com.runtastic.android.me.lite application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5686
The Runtastic Me aka com.runtastic.android.me.lite application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5686
CVE-2014-5686 affects the Runtastic Me Android app (com.runtastic.android.me.lite) version 1.0.2; it does not verify X.509 certificates from SSL servers, enabling potential MITM with crafted certificates. The NVD entry lists a CVSSv2 base score of 5.4 (Medium) with partial impact to confidentiali...