CVE-2012-4011

Sažetak

The Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.

Reference

http://cs.cybozu.co.jp/information/20120910up01.php
http://jvn.jp/en/jp/JVN23568423/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000083

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-09-2012 - 04:00

Objavljeno

08-09-2012 - 10:28