CVEs-PoC/2017/CVE-2017-13105.md

### [CVE-2017-13105](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13105)
![](https://img.shields.io/static/v1?label=Product&message=Virus%20Cleaner%20-%20Antivirus%2C%20Booster&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=3.7.1.13293.7.1.1329%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-295&color=brighgreen)

### Description

Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, 2017-09-13, Android application accepts all SSL certificates during SSL communication. This opens the application up to a man-in-the-middle attack having all of its encrypted traffic intercepted and read by an attacker.

### POC

#### Reference
- https://www.kb.cert.org/vuls/id/787952

#### Github
No PoCs found on GitHub currently.