EUVD-2014-5761

Malware in sbrugna...

SplashID Safe Password Manager - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application SplashID Safe Password Manager published at the 'play' market has multiple vulnerabilities...

CVE-2014-5874

The SplashID aka com.splashidandroid application 7.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The SplashID aka com.splashidandroid application 7.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5874

Summary: CVE-2014-5874 affects the SplashID Android app (com.splashidandroid) version 7.2.2. The root cause is that the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. The co...

CVE-2014-5874

The SplashID aka com.splashidandroid application 7.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

SplashID 5.5 / SplashID Lite 4.6 For iPhone Password Caching Issue

I submitted this vulnerability report about the password database SplashID to cert.org in early November 2010. CERT bounced it back saying they were too busy. No big deal, so I sent it to the product's vendor, SplashData, on 11/5/2010. I worked with SplashData for a few weeks to help them...