EUVD-2016-2236

Malware in sbrugna...

CVE-2016-1132

Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates...

Code injection

Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates...

CVE-2016-1132

CVE-2016-1132 affects Shoplat App for iOS (versions 1.10.00–1.18.00). The root cause is improper SSL certificate verification, enabling a remote attacker to intercept communications via a man-in-the-middle when connecting to servers using invalid certificates. Impact is described as the ability t...

CVE-2016-1132

Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates...

NTT DOCOMO Shoplat App for iOS SSL Certificate Validation Security Bypass Vulnerability

NTT DOCOMO Shoplat is a set of O2O e-commerce platform based on acoustic indoor positioning technology from NTT DOCOMO in Japan. The platform supports pushing reward points, e-coupons and other content information to users.Shoplat App for iOS is a set of Shoplat apps based on iOS platform. A...

Shoplat App for iOS issue in the verification of SSL certificates

Overview Shoplat App for iOS provided by NTT DOCOMO contains an issue in the verification of the SSL server certificate. ma.la reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A connection to a server using a...