Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4017

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-4017
Last Modified 01 Mar 2013 11:44:57
Published 28 Sep 2012 06:40:21
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4017

Summary

The jigbrowser+ application before 1.5.0 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.

Vulnerable Systems

Application

  • Jb%2b Jigbrowser%2b 1.0.5

  • Jb%2b Jigbrowser%2b 1.1.1

  • Jb%2b Jigbrowser%2b 1.5.0

  • Jb%2b Jigbrowser%2b 1.5.5


References

JVNDB - JVNDB-2012-000091

JVN - JVN#86318665

OSVDB - 85819


Last Updated: 27 May 2016 11:00:49