6 matches found
EUVD-2014-6764
Malware in sbrugna...
WePhone - free phone calls - BSD license, Customized SSL, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application WePhone - free phone calls published at the 'play' market has multiple vulnerabilities...
CVE-2014-6886
The WePhone - phone calls vs skype aka com.wephoneapp application 1.03.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The WePhone - phone calls vs skype aka com.wephoneapp application 1.03.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6886
The WePhone - phone calls vs skype aka com.wephoneapp application 1.03.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6886
The CVE-2014-6886 entry relates to the WePhone Android app (version 1.03.00) failing to verify X.509 certificates from SSL servers, enabling MITM disclosure. Evidence in connected sources indicates this is a certificate-validation flaw in the client that can expose partial confidentiality/integri...