3 matches found
Design/Logic Flaw
The Touchnote Postcards aka com.touchnote.android application 4.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5721
The CVE-2014-5721 issue affects Touchnote Postcards (com.touchnote.android) app for Android, version 4.2.7, where the SSL/TLS implementation does not verify X.509 certificates. Root cause: no certificate verification enables man-in-the-middle attackers to spoof servers and capture sensitive infor...
CVE-2014-5721
The Touchnote Postcards aka com.touchnote.android application 4.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...