3 matches found
EUVD-2014-7453
Malware in sbrugna...
Information disclosure
The Water Lateral Sizer aka com.wWaterLateralSizer application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7582
The CVE-2014-7582 entry concerns the Water Lateral Sizer Android app (package com.wWaterLateralSizer) version 1.2, which fails to verify X.509 certificates from SSL servers. This logic flaw enables man-in-the-middle attackers to spoof servers and exfiltrate sensitive information via crafted certi...