CVE-2014-7785

Vulnerability

The AAAA Discount Bail Android application (com.onesolutionapps.aaaadiscountbailandroid) version 1.1 does not properly verify X.509 certificates from SSL servers [1]. This means that when the app makes HTTPS connections, it does not validate that the server's certificate is issued by a trusted certificate authority, allowing any certificate to be accepted [1]. The vulnerability is present in the app's network communication code and affects all installations of version 1.1.

Exploitation

An attacker positioned on the same network as the victim's Android device (e.g., a public Wi-Fi hotspot) can perform a man-in-the-middle attack [1]. The attacker presents a crafted certificate to the app, which the app accepts without validation. This allows the attacker to intercept and potentially modify all HTTPS traffic between the app and its servers [1]. No user interaction beyond normal app usage is required; the attack is transparent to the user.

Impact

Successful exploitation enables the attacker to view or modify network traffic that should have been protected by HTTPS [1]. Depending on the data transmitted by the app, this could lead to credential theft, disclosure of personal information, or other sensitive data exposure [1]. The attacker gains the ability to spoof the legitimate server and obtain any information the app sends or receives.

Mitigation

As of the publication date (2014-10-21), no official patch or updated version has been released to address this vulnerability [1][2]. Users are advised to avoid using the AAAA Discount Bail application and instead access the service through a web browser, which typically implements proper SSL validation [1]. The application may be removed from the device to eliminate the risk. The vulnerability is listed in the CERT/CC VU#582497 advisory, which tracks multiple Android apps with similar SSL validation failures [1][2].