框架层漏洞列表 (33)

OSVDB/91282(发布:2013-03-14)MCOEPS
CVSSN/A

Google Android contains a flaw that is due to applications being given the MOUNT_FORMAT_FILESYSTEMS permissions. This may allow malicious applications to enumerate which file or directory is currently in use.

OSVDB/91281(发布:2013-03-14)MCOEPS
CVSSN/A

Google Android contains a flaw that may allow a recently uninstalled application that is still running on the system to gain permissions of a newly installed application. With a specially crafted application, a context-dependent attacker can potentially gain privileged access to a users device dependent on the permissions of recently installed applications.

OSVDB/91280(发布:2013-03-14)MCOEPS
CVSSN/A

Google Android contains a flaw that may allow a context-dependent attacker to spoof a valid application that is installed via an APK file. This may allow the attacker to trick a user in to installing an application that appears valid but is in fact malicious.

OSVDB/91278(发布:2013-03-14)MCOEPS
CVSSN/A

Google Android contains a flaw that is due to the system allowing all applications on the device to access to clipboard at any time. This may allow a remote attacker to more easily gain access to sensitive information stored on the clipboard via a specially crafted application.

OSVDB/91276(发布:2013-03-14)MCOEPS
CVSSN/A

Google Android contains a flaw due to the CHANGE_NETWORK_STATE permission that will allow an application to write '0', '1', or '2' to arbitrary files. This may allow a remote attacker to more easily gain access to information stored in plaintext or in the sysfs.

OSVDB/87014(发布:2012-11-02)MCOEPS
CVSSN/A

Google Android contains a flaw that is due to a running application on the device having the WRITE_SMS capability, which may allow a remote attacker to create unauthorized arbitrary SMS messages. This may allow the attacker to more easily conduct various phishing attacks.

首页上一页123456下一页尾页 第2页 / 共6页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站