RSS   Vulnerabilities for 'Japan shopping'   RSS

2013-08-21
 
CVE-2013-4700

CWE-310
 

 
The Yahoo! Japan Shopping application 1.4 and earlier for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 

 >>> Vendor: Yahoo 14 Products
Pager
Messenger
Audio conferencing activex control
Ui library
Widgets
Toolbar
Music jukebox
Yahoo assistant
YUI
Yahoo! browser
Tumblr
Yafuoku!
Japan shopping
Yahoo ybox


Copyright 2019, cxsecurity.com

 

Back to Top