Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-1978

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-1978
Last Modified 20 Mar 2014 12:02:34
Published 19 Mar 2014 10:17:45
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-1978

Summary

The application link interface in the NTT DOCOMO sp mode mail application 6100 through 6300 for Android 4.0.x and 6130 through 6700 for Android 4.1 through 4.4 writes message content to the SD card during e-mail composition, which allows attackers to obtain sensitive information via a crafted application.

Vulnerable Systems

Application

  • Nttdocomo Spmode Mail Android 6100

  • Nttdocomo Spmode Mail Android 6130

  • Nttdocomo Spmode Mail Android 6300

  • Nttdocomo Spmode Mail Android 6700


References

JVNDB - JVNDB-2014-000028

JVN - JVN#05951929


Last Updated: 27 May 2016 11:04:44