Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3975


Vulnerability Score 2.6 2.6
CVE Id CVE-2011-3975
Last Modified 20 Oct 2011 10:56:24
Published 03 Oct 2011 11:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE



A certain HTC update for Android 2.3.4 build GRJ22, when the Sense interface is used on the HTC EVO 3D, EVO 4G, ThunderBolt, and unspecified other devices, provides the HtcLoggers.apk application, which allows user-assisted remote attackers to obtain a list of telephone numbers from a log, and other sensitive information, by leveraging the android.permission.INTERNET application permission and establishing TCP sessions to on port 65511 and a second port.

Vulnerable Systems

Operating System

  • Google Android 2.3.4


XF - htc-htcloggers-info-disclosure(70270)


BID - 49916



Last Updated: 27 May 2016 10:57:47