Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0875

Overview

Vulnerability Score 1.8 1.8
CVE Id CVE-2015-0875
Last Modified 19 Feb 2015 08:56:25
Published 14 Feb 2015 09:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector ADJACENT_NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2015-0875

Summary

The Ogaki Kyoritsu Bank Smartphone Passbook application 1.0.0 for Android creates a log file containing input data from the user, which allows attackers to obtain sensitive information by reading a file.

Vulnerable Systems

Application

  • Ogaki Kyoritsu Bank Smartphone Passbook 1.0.0

  • Okb.co.jp Smartphone Passbook 1.00


References

CONFIRM - http://www.okb.co.jp/okdirect/sp_passbook/information01.html

JVNDB - JVNDB-2015-000016

JVN - JVN#48659722


Last Updated: 27 May 2016 11:07:52