Call of Duty Elite for iOS CVE-2012-4918 SSL Certificate Validation Spoofing Vulnerability

Call of Duty Elite for iOS is prone to a security vulnerability that may allow attackers to conduct spoofing attacks.

Attackers can exploit this issue to spoof a valid server and conduct man-in-the-middle attacks. Successful exploits will cause victims to accept the certificates as coming from a legitimate site.

Call of Duty Elite 2.0.1 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus