Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4866

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2011-4866
Last Modified 25 Jan 2012 02:45:35
Published 24 Jan 2012 11:03:28
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4866

Summary

The Kaixin001 (com.kaixin001.activity) application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext password via a crafted application.

Vulnerable Systems

Application

  • Kaixin001 1.3.1

  • Kaixin001 1.3.3


References

MISC - http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4866-vulnerability-in-Kaixin001.html


Last Updated: 27 May 2016 10:57:22