Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Webroot, Avira patch flaws in mobile security apps

Webroot, Avira patch flaws in mobile security apps


Securityweek - (International) Webroot and Avira Mobile Security released separate patches addressing vulnerabilities including, a secure sockets layer (SSL) certificate vulnerability for Webroot Mobile Protection for iOS versions 1.10.316 and prior that could have allowed a man-in-the-middle (MitM) attacker to obtain usernames, passwords, and other sensitive information. Avira Mobile Security patched a vulnerability on versions 1.5.7 and prior that allowed a MitM attacker to capture login information via an HTTP POST request.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:25:11