Lucene search

[email protected]CVE-2015-1574

HistoryFeb 15, 2015 - 8:59 p.m.

CVE-2015-1574

2015-02-1520:59:00

CWE-19

[email protected]

web.nvd.nist.gov

google email

android

cve-2015-1574

denial of service

email security

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.7%

JSON

The Google Email application 4.2.2.0200 for Android allows remote attackers to cause a denial of service (persistent application crash) via a “Content-Disposition: ;” header in an e-mail message.

CPENameOperatorVersion
google:emailgoogle emaileq4.2.2.0200

CPE	Name	Operator	Version
google:email	google email	eq	4.2.2.0200

References

hmarco.org/bugs/google_email_app_4.2.2_denial_of_service.html

openwall.com/lists/oss-security/2015/02/10/9

openwall.com/lists/oss-security/2015/02/12/15

packetstormsecurity.com/files/130388/Google-Email-4.4.2.0200-Denial-Of-Service.html

seclists.org/fulldisclosure/2015/Feb/58

www.securityfocus.com/archive/1/534703/100/0/threaded

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.028 Low

EPSS

Percentile

90.7%

JSON

Related for CVE-2015-1574

securityvulns2 cvelist1 prion1 thn1 packetstorm1