CVE-2012-5809
The CVE-2012-5809 entry describes the Groupon Redemptions Android app failing to verify that the server hostname matches the CN or subjectAltName in the server’s X.509 certificate. This weakness allows MITM attackers to spoof SSL servers using an arbitrary valid certificate. The vulnerability is ...