EUVD-2014-5414

Malware in sbrugna...

CVE-2014-5527

The CVE-2014-5527 entry concerns the Tapjoy library for Android, which does not verify X.509 certificates from SSL servers. This root cause enables man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, as described in multiple connected records. ...