Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:39519659
HistoryAug 08, 2012 - 12:00 a.m.

JVN#39519659: Sleipnir Mobile for Android vulnerable to arbitrary script execution

2012-08-0800:00:00
Japan Vulnerability Notes
jvn.jp
28

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

60.2%

JSON

Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary script execution vulnerability.

Impact

If a user uses a certain function of the affected product that called by other malicious Android application, an attacker may be able to execute an arbitrary script.

As a result, the cookies in the site specified by an attacker may be disclosed.

Solution

Update the software
Update to the latest version according to the information provided by the developer.

Products Affected

  • Sleipnir Mobile for Android 2.2.0 and earlier
  • Sleipnir Mobile for Android Black Edition 2.2.0 and earlier

Related

nvd 1
cve 1
prion 1
cvelist 1
nvd
nvd
CVE-2012-4004
2012-08-08 18:55:01
cve
cve
CVE-2012-4004
2012-08-08 18:55:01
prion
prion
Cross site scripting
2012-08-08 18:55:00
cvelist
cvelist
CVE-2012-4004
2012-08-08 18:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

60.2%

JSON
Related for JVN:39519659
nvd1cve1prion1cvelist1