Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4865

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2011-4865
Last Modified 29 Feb 2012 12:00:00
Published 24 Jan 2012 11:03:28
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-4865

Summary

The Tencent WBlog (com.tencent.WBlog) 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search keywords via a crafted application.

Vulnerable Systems

Application

  • Tencent Microblogpad 1.4.0

  • Tencent Wblog 3.3.1


References

MISC - http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4865-vulnerability-in-WBlog-MicroBlogPad.html


Last Updated: 27 May 2016 10:42:30