Citrix ShareFile Mobile and ShareFile Mobile for Tablets before 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.Referenceshttp://secunia.com/advisories/57020http://support.citrix.com/article/CTX140303http://www.securitytracker.com/id/1029791
