Lucene search

CertccCVE-2013-3580

HistoryJul 29, 2013 - 1:59 p.m.

CVE-2013-3580

2013-07-2913:59:48

CWE-20

certcc

web.nvd.nist.gov

trustgo

antivirus

mobile security

android

cve-2013-3580

denial of service

vulnerability

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

35.7%

JSON

The TrustGo Antivirus & Mobile Security application before 1.3.6 for Android allows attackers to cause a denial of service (application crash) via a crafted application that sends an intent to com.trustgo.mobile.security.USSDScannerActivity with zero arguments.

Affected configurations

Nvd

Node

trustgoantivirus_\&_mobile_securityMatch1.2.7-android

trustgoantivirus_\&_mobile_securityMatch1.2.8-android

trustgoantivirus_\&_mobile_securityMatch1.2.9-android

trustgoantivirus_\&_mobile_securityMatch1.3.0-android

trustgoantivirus_\&_mobile_securityMatch1.3.1-android

trustgoantivirus_\&_mobile_securityMatch1.3.2-android

trustgoantivirus_\&_mobile_securityMatch1.3.3-android

trustgoantivirus_\&_mobile_securityMatch1.3.4-android

trustgoantivirus_\&_mobile_securityMatch1.3.5-android

VendorProductVersionCPE
trustgoantivirus_\&_mobile_security1.2.7cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.7:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.2.8cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.8:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.2.9cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.9:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.0cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.0:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.1cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.1:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.2cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.2:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.3cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.3:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.4cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.4:-:*:*:*:android:*:*
trustgoantivirus_\&_mobile_security1.3.5cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.5:-:*:*:*:android:*:*

Vendor	Product	Version	CPE
trustgo	antivirus_\&_mobile_security	1.2.7	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.7:-::::android::*
trustgo	antivirus_\&_mobile_security	1.2.8	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.8:-::::android::*
trustgo	antivirus_\&_mobile_security	1.2.9	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.2.9:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.0	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.0:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.1	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.1:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.2	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.2:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.3	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.3:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.4	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.4:-::::android::*
trustgo	antivirus_\&_mobile_security	1.3.5	cpe:2.3:a:trustgo:antivirus_\&_mobile_security:1.3.5:-::::android::*

References

www.kb.cert.org/vuls/id/709806

play.google.com/store/apps/details?id=com.trustgo.mobile.security

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

35.7%

JSON

Related for CVE-2013-3580