CVE-2010-4832

Name of the Vulnerable Software and Affected Versions Android OS versions prior to 2.2

Description The issue concerns the display of SSL certificates in certain cases, potentially allowing remote attackers to spoof trusted web sites. This can occur when a web page contains references to external sources, and either the certificate of the last loaded resource is checked instead of the main page, or later certificates are not checked when the HTTPS connection is reused.

Recommendations For Android OS versions prior to 2.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.