armadito-av icon indicating copy to clipboard operation
armadito-av copied to clipboard

Published 20 hours ago verified publisher icon armadito

vulnerability in database update using HTTP protocol

Open fdechelle opened this issue 8 years ago • 0 comments

vulnerability disclosed here: http://seclists.org/fulldisclosure/2016/Jun/69

index file download is done using HTTP, which allows MITM attacks. Use of HTTPS is mandatory

fdechelle avatar Jun 29 '16 13:06 fdechelle