Security News > 2016 > September > Android apps based on Adobe AIR SDK send out unencrypted data (Help Net Security)

Android apps based on Adobe AIR SDK send out unencrypted data (Help Net Security)
2016-09-15 18:12

Developers using the Adobe AIR SDK should update to the latest version of the software development kit and rebuild the apps as soon as possible if they don’t want their users’ traffic being exposed to attackers. The flaw, discovered by Nightwatch Cybersecurity researchers while monitoring network traffic during testing of some Android applications, directs runtime analytics for AIR applications to several Adobe servers. Unfortunately, that traffic is unencrypted. “Because encryption is not used, this would … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/rQGgIxv5wWc/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 112 77 1333 1988 640 4038