- 漏洞信息

91276
Google Android CHANGE_NETWORK_STATE Permission Arbitrary File Manipulation
Mobile Phone / Hand-held Device Input Manipulation
Loss of Integrity Upgrade
Exploit Unknown Vendor Verified, Uncoordinated Disclosure

- 漏洞描述

Google Android contains a flaw due to the CHANGE_NETWORK_STATE permission that will allow an application to write '0', '1', or '2' to arbitrary files. This may allow a remote attacker to more easily gain access to information stored in plaintext or in the sysfs.

- 时间线

2013-03-14 Unknow
Unknow Unknow

- 解决方案

It has been reported that this issue has been fixed. Upgrade to Jelly Bean (4.2) or higher, to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站