N/A

The "Peoples Bank Tulsa" by Peoples Bank - OK app 3.0.2 -- aka peoples-bank-tulsa/id1074279285 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

N/A

N/A

Peoples Bank Tulsa for iOS 安全漏洞

Peoples Bank Tulsa for iOS (又名peoples-bank-tulsa/id1074279285)是美国Peoples Bank银行的一款基于iOS平台的用于管理银行账户的应用程序。 基于iOS平台的Peoples Bank Tulsa 3.0.2版本中存在安全漏洞，该漏洞源于程序没有验证SSL服务器端的X.509证书。攻击者可借助特制的证书利用该漏洞实施中间人攻击，冒充可信的服务器，获取敏感信息。

N/A

N/A