MidnightBSD

Advisories for life_story_of_sheikh_mujib_project

CVE-2014-7691 MEDIUM

The Life Story of Sheikh Mujib (aka com.wbongobondho) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
life_story_of_sheikh_mujib_project life_story_of_sheikh_mujib 0.1