- 漏洞信息

91481
Google Android SD Card Cross-application Data Disclosure
Local Access Required Information Disclosure
Loss of Confidentiality None Required
Exploit Public Third-party Disputed, No Vendor Response

- 漏洞描述

Android has been reported to contain a flaw related to data storage. The issue is allegedly due to Android storing data insecurely, allowing for copied data (i.e. cloned) to be used by a second application, allowing for an authentication bypass. However, the analysis is based on having super-user privileges when performing testing, which would of course allow such data access. Subsequent dispute has clarified that the behavior originally demonstrated is expected.

- 时间线

2013-03-17 2012-03-01
Unknow Unknow

- 解决方案

The reported vulnerability has been determined to be incorrect. No solution is required.

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站