Google Android SD Card Application Permission Hiding Weakness
Mobile Phone / Hand-held Device
Loss of Integrity
Google Android contains a flaw that may allow an application stored on the SD card to hide their permissions from the user. Note that both the researcher and the vendor suggest that while this is a theoretical issue, neither can come up with a current attack scenario that leverages this bug.
OSVDB is not currently aware of a solution for this vulnerability.