- 漏洞信息

85304
Sosceo Ad Library for Android com.sosceo.android.ads.AdView Recent Phone Call Number Remote Disclosure
Remote / Network Access, Mobile Phone / Hand-held Device Information Disclosure
Loss of Confidentiality Workaround
Exploit Public Uncoordinated Disclosure

- 漏洞描述

Sosceo Ad Library for Android contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered by the com.sosceo.android.ads.AdView object querying the device's contact information for the most recent call and then storing it in data objects which are used as URL queries when requesting ads, which will disclose the phone number of the most recent call to a remote attacker.

- 时间线

2012-03-19 Unknow
Unknow Unknow

- 解决方案

The presence of this software means the host system has been compromised through some other exploit/vulnerability. The only way to ensure the software, and any other malicious software (malware), is completely removed is to re-install the operating system.

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站