Search Results | AttackerKB

Show filters

Topics 8 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

8 Total Results

Displaying 1-8 of 8

Attacker Value

Unknown

CVE-2024-24262

Disclosure Date: February 05, 2024 (last updated February 08, 2024)

media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_uac_stop_timer function at /uac/sip-uac-transaction.c.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-24260

Disclosure Date: February 05, 2024 (last updated February 08, 2024)

media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_subscribe_remove function at /uac/sip-uac-subscribe.c.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2014-7591

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Demon (aka com.ireadercity.c24) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7493

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The 100 Books (aka com.ireadercity.c20) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7491

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Short Stories (aka com.ireadercity.c48) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7499

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Sword (aka com.ireadercity.c25) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7509

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The A Very Short History of Japan (aka com.ireadercity.c51) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7084

Disclosure Date: October 19, 2014 (last updated October 05, 2023)

The Hesheng 80 (aka com.ireadercity.c29) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0