CVE-2014-5239

Published: Aug 14, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The Microsoft Outlook.com application before 7.8.2.12.49.7090 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1030733

vdb-entry

x_refsource_SECTRACK

JVN#72950786

third-party-advisory

x_refsource_JVN

JVNDB-2014-000086

third-party-advisory

x_refsource_JVNDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-5239

Description

Affected Products

References