Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4697

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2011-4697
Last Modified 25 Jan 2012 12:00:00
Published 24 Jan 2012 11:03:27
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4697

Summary

The Xiaomi MiTalk Messenger (com.xiaomi.channel) application before 2.1.320 for Android does not properly protect data, which allows remote attackers to read or modify messaging information via a crafted application.

Vulnerable Systems

Application

  • Xiaomi Mitalk Messenger 1.0

  • Xiaomi Mitalk Messenger 2.1.280

  • Xiaomi Mitalk Messenger 2.1.310


References

MISC - http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4697-vulnerability-in-MiTalk.html


Last Updated: 27 May 2016 10:57:22