CSipSimple Application for Android Message / Call Log Direct Request Local Information Disclosure
Local Access Required,
Mobile Phone / Hand-held Device
Loss of Confidentiality
CSipSimple Application for Android contains a flaw that may lead to the unauthorized disclosure of sensitive information. The issue is triggered when a direct request is sent for messages or call logs. This may allow a local attacker to gain access to sensitive information.
OSVDB is not currently aware of a solution for this vulnerability.