CVE-2012-0326

Sažetak

The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.

Reference

http://jvn.jp/en/jp/JVN31860555/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000024
http://osvdb.org/80106
http://twicca.r246.jp/notice/
http://www.securityfocus.com/bid/52442
https://exchange.xforce.ibmcloud.com/vulnerabilities/73951
https://play.google.com/store/apps/details?id=jp.r246.twicca

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

11-01-2018 - 02:29

Objavljeno

17-03-2012 - 10:55