RSS   Vulnerabilities for 'Japan shopping'   RSS

2013-08-21
 
CVE-2013-4700

CWE-310
 

 
The Yahoo! Japan Shopping application 1.4 and earlier for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 

 >>> Vendor: Yahoo 15 Products
Pager
Messenger
Toolbar
Audio conferencing activex control
Ui library
Widgets
Music jukebox
Yahoo assistant
YUI
Yahoo! browser
Tumblr
Yafuoku!
Japan shopping
Yahoo ybox
Athenz


Copyright 2024, cxsecurity.com

 

Back to Top