CVE-2012-2649

Sažetak

The Sleipnir Mobile application 2.2.0 and earlier and Sleipnir Mobile Black Edition application 2.2.0 and earlier for Android allow remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.

Reference

http://jvn.jp/en/jp/JVN99730704/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000075
https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir
https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir_black

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

13-08-2012 - 04:00

Objavljeno

08-08-2012 - 18:55