IT outsourcing Kemerovo CVE-2014-7083

    The Jiu Jik (aka com.scmp.jiujik) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
      Теги:
    • нет
    • 0
    • 0
    • 0 комментариев

    IT outsourcing Kemerovo CVE-2014-7084

      The Hesheng 80 (aka com.ireadercity.c29) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
        Теги:
      • нет
      • 0
      • 0
      • 0 комментариев

      IT outsourcing Kemerovo CVE-2014-7100

        The www.sm3ny.com (aka sm3ny.com) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

        IT outsourcing Kemerovo CVE-2014-7052

          The sahab-alkher.com (aka com.tapatalk.sahabalkhercomvb) application 2.4.9.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
            Теги:
          • нет
          • 0
          • 0
          • 0 комментариев

          IT outsourcing Kemerovo CVE-2014-7191

            The qs module before 1.0.0 in Node.js does not call the compact function for array data, which allows remote attackers to cause a denial of service (memory consumption) by using a large index value to create a sparse array.
              Теги:
            • нет
            • 0
            • 0
            • 0 комментариев

            IT outsourcing Kemerovo CVE-2014-7874

              Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 3.2.3 on HP-UX B.11.23, and before 3.2.8 on HP-UX B.11.31, allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
                Теги:
              • нет
              • 0
              • 0
              • 0 комментариев

              IT outsourcing Kemerovo CVE-2014-7091

                The Sacramento Kings (aka com.tibco.gse.sports) application 6.0.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
                  Теги:
                • нет
                • 0
                • 0
                • 0 комментариев

                IT outsourcing Kemerovo CVE-2014-7092

                  The Ubooly (aka com.ubooly.ubooly) application 4.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
                    Теги:
                  • нет
                  • 0
                  • 0
                  • 0 комментариев

                  IT outsourcing Kemerovo CVE-2014-7093

                    The Superbike Magazine (aka com.triactivemedia.superbike) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
                      Теги:
                    • нет
                    • 0
                    • 0
                    • 0 комментариев

                    IT outsourcing Kemerovo CVE-2014-7098

                      The Fylet Secure Large File Sender (aka com.application.fyletFileSender) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
                        Теги:
                      • нет
                      • 0
                      • 0
                      • 0 комментариев