Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4906

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-4906
Last Modified 14 Sep 2012 09:23:37
Published 13 Sep 2012 04:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4906

Summary

Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by obtaining credential data, a different vulnerability than CVE-2012-4903.

Vulnerable Systems

Application

  • Google Chrome 18.0.1025306


References

CONFIRM - https://code.google.com/p/chromium/issues/detail?id=144820

CONFIRM - http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html


Last Updated: 27 May 2016 11:00:41