4 matches found
CVE-2014-7402
The SK encar aka com.encardirect.app application @7F050000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The SK encar aka com.encardirect.app application @7F050000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7402
CVE-2014-7402 affects the Android app SK encar (com.encardirect.app). The root cause is failure to verify X.509 certificates from SSL servers, enabling potential MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. No explicit remediation is provided in the ...
CVE-2014-7402
The SK encar aka com.encardirect.app application @7F050000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...