Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5187

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5187
Last Modified 07 Feb 2013 12:00:00
Published 06 Feb 2013 07:05:43
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5187

Summary

The Weathernews Touch application 2.3.2 and earlier for Android allows attackers to obtain sensitive information about logged locations via a crafted application that leverages read permission for system log files.

Vulnerable Systems

Application

  • Weathernews Touch 1.20

  • Weathernews Touch 1.23

  • Weathernews Touch 1.33

  • Weathernews Touch 1.35

  • Weathernews Touch 1.38

  • Weathernews Touch 1.39

  • Weathernews Touch 1.40

  • Weathernews Touch 1.43

  • Weathernews Touch 1.44

  • Weathernews Touch 1.49

  • Weathernews Touch 1.50

  • Weathernews Touch 1.51

  • Weathernews Touch 1.53

  • Weathernews Touch 1.55

  • Weathernews Touch 1.58

  • Weathernews Touch 1.64

  • Weathernews Touch 1.65

  • Weathernews Touch 1.66

  • Weathernews Touch 1.67

  • Weathernews Touch 1.68

  • Weathernews Touch 2.0.0

  • Weathernews Touch 2.1.0

  • Weathernews Touch 2.1.1

  • Weathernews Touch 2.2.0

  • Weathernews Touch 2.3.1

  • Weathernews Touch 2.3.2


References

JVNDB - JVNDB-2013-000005

JVN - JVN#86040029


Last Updated: 27 May 2016 11:02:42