4 matches found
CVE-2014-7334
The Where Dallas aka com.magzter.wheredallas application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Where Dallas aka com.magzter.wheredallas application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7334
The CVE-2014-7334 entry concerns the Where Dallas Android app (version 3.0.2, package com.magzter.wheredallas) that does not verify X.509 certificates for SSL connections. This behavior enables a man-in-the-middle to spoof TLS servers and access sensitive information via a crafted certificate, as...
CVE-2014-7334
The Where Dallas aka com.magzter.wheredallas application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...