Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-1977

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-1977
Last Modified 20 Mar 2014 12:03:45
Published 19 Mar 2014 10:17:45
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-1977

Summary

The NTT DOCOMO sp mode mail application 6300 and earlier for Android 4.0.x and 6700 and earlier for Android 4.1 through 4.4 uses weak permissions for attachments during processing of incoming e-mail messages, which allows attackers to obtain sensitive information via a crafted application.

Vulnerable Systems

Application

  • Nttdocomo Spmode Mail Android 2546

  • Nttdocomo Spmode Mail Android 2631

  • Nttdocomo Spmode Mail Android 3000

  • Nttdocomo Spmode Mail Android 3100

  • Nttdocomo Spmode Mail Android 3200

  • Nttdocomo Spmode Mail Android 3300

  • Nttdocomo Spmode Mail Android 3400

  • Nttdocomo Spmode Mail Android 4000

  • Nttdocomo Spmode Mail Android 4200

  • Nttdocomo Spmode Mail Android 4300

  • Nttdocomo Spmode Mail Android 4400

  • Nttdocomo Spmode Mail Android 4500

  • Nttdocomo Spmode Mail Android 4600

  • Nttdocomo Spmode Mail Android 4700

  • Nttdocomo Spmode Mail Android 4800

  • Nttdocomo Spmode Mail Android 4900

  • Nttdocomo Spmode Mail Android 5000

  • Nttdocomo Spmode Mail Android 5100

  • Nttdocomo Spmode Mail Android 5200

  • Nttdocomo Spmode Mail Android 5300

  • Nttdocomo Spmode Mail Android 5400

  • Nttdocomo Spmode Mail Android 5500

  • Nttdocomo Spmode Mail Android 5550

  • Nttdocomo Spmode Mail Android 6300

  • Nttdocomo Spmode Mail Android 6700


References

JVNDB - JVNDB-2014-000027

JVN - JVN#81739241


Last Updated: 27 May 2016 11:04:44