CVE-2014-7803

Vulnerability

The Woodward Bail (com.onesolutionapps.woodwardbailandroid) application version 1.1 for Android does not properly verify X.509 certificates from SSL servers. This vulnerability occurs when the app makes HTTPS connections without performing certificate chain validation, as described in CERT/CC VU#582497 [1]. The application is listed among many Android apps that fail dynamic SSL validation testing [2].

Exploitation

An attacker with network access to the Android device (e.g., on a shared Wi-Fi network) can perform a man-in-the-middle attack by presenting a crafted certificate. The attacker does not need prior authentication or user interaction beyond normal app usage. Because the app does not validate the certificate chain, the attacker can intercept the HTTPS connection, posing as the legitimate server [1].

Impact

A successful MITM attack allows the attacker to view or modify network traffic that should have been protected by HTTPS. For the Woodward Bail app, this could lead to disclosure of sensitive information transmitted by the app (e.g., personal or financial data). The impact may include credential stealing, and in some cases, further exploitation such as arbitrary code execution depending on the app's functionality [1].

Mitigation

Users should avoid using the Woodward Bail application version 1.1 until a fix is released. Since the app provides access to content that may also be available via web browser, users can access the same resources through a browser which properly validates SSL certificates [1]. The developer (One Solution Apps) has not released a patched version as of the publication date. No workaround besides using alternative access methods is available. The app is listed in CERT/CC's tracking spreadsheet of vulnerable Android applications [2].