4 matches found
EUVD-2014-6738
Malware in sbrugna...
CVE-2014-6860
The Trial Tracker aka com.etcweb.android.trialtracker application 1.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Trial Tracker aka com.etcweb.android.trialtracker application 1.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6860
The CVE-2014-6860 entry concerns the Android app “Trial Tracker” (com.etcweb.android.trial_tracker), version 1.1.9, where SSL/TLS connections do not verify X.509 certificates. This creates a classic man-in-the-middle risk: an attacker could spoof the server and capture or modify sensitive informa...