RSS   Vulnerabilities for 'Yafuoku!'   RSS

2013-08-21
 
CVE-2013-4699

CWE-310
 

 
The Yahoo! Japan Yafuoku! application 4.3.0 and earlier for iOS and Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 

 >>> Vendor: Yahoo 14 Products
Pager
Messenger
Audio conferencing activex control
Ui library
Widgets
Toolbar
Music jukebox
Yahoo assistant
YUI
Yahoo! browser
Tumblr
Yafuoku!
Japan shopping
Yahoo ybox


Copyright 2019, cxsecurity.com

 

Back to Top