Lucene search

[email protected]NVD:CVE-2012-1244

HistoryApr 27, 2012 - 6:55 p.m.

CVE-2012-1244

2012-04-2718:55:01

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

Low

EPSS

0.001

Percentile

41.0%

JSON

The NTT DOCOMO sp mode mail application 5400 and earlier for Android does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Affected configurations

Nvd

Node

nttdocomospmode_mail_androidRange≤5400

nttdocomospmode_mail_androidMatch2546

nttdocomospmode_mail_androidMatch2631

nttdocomospmode_mail_androidMatch3000

nttdocomospmode_mail_androidMatch3100

nttdocomospmode_mail_androidMatch3200

nttdocomospmode_mail_androidMatch3300

nttdocomospmode_mail_androidMatch3400

nttdocomospmode_mail_androidMatch4000

nttdocomospmode_mail_androidMatch4200

nttdocomospmode_mail_androidMatch4300

nttdocomospmode_mail_androidMatch4400

nttdocomospmode_mail_androidMatch4500

nttdocomospmode_mail_androidMatch4600

nttdocomospmode_mail_androidMatch4700

nttdocomospmode_mail_androidMatch4800

nttdocomospmode_mail_androidMatch4900

nttdocomospmode_mail_androidMatch5000

nttdocomospmode_mail_androidMatch5100

nttdocomospmode_mail_androidMatch5200

nttdocomospmode_mail_androidMatch5300

VendorProductVersionCPE
nttdocomospmode_mail_android*cpe:2.3:a:nttdocomo:spmode_mail_android:*:*:*:*:*:*:*:*
nttdocomospmode_mail_android2546cpe:2.3:a:nttdocomo:spmode_mail_android:2546:*:*:*:*:*:*:*
nttdocomospmode_mail_android2631cpe:2.3:a:nttdocomo:spmode_mail_android:2631:*:*:*:*:*:*:*
nttdocomospmode_mail_android3000cpe:2.3:a:nttdocomo:spmode_mail_android:3000:*:*:*:*:*:*:*
nttdocomospmode_mail_android3100cpe:2.3:a:nttdocomo:spmode_mail_android:3100:*:*:*:*:*:*:*
nttdocomospmode_mail_android3200cpe:2.3:a:nttdocomo:spmode_mail_android:3200:*:*:*:*:*:*:*
nttdocomospmode_mail_android3300cpe:2.3:a:nttdocomo:spmode_mail_android:3300:*:*:*:*:*:*:*
nttdocomospmode_mail_android3400cpe:2.3:a:nttdocomo:spmode_mail_android:3400:*:*:*:*:*:*:*
nttdocomospmode_mail_android4000cpe:2.3:a:nttdocomo:spmode_mail_android:4000:*:*:*:*:*:*:*
nttdocomospmode_mail_android4200cpe:2.3:a:nttdocomo:spmode_mail_android:4200:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nttdocomo	spmode_mail_android	*	cpe:2.3:a:nttdocomo:spmode_mail_android::::::::
nttdocomo	spmode_mail_android	2546	cpe:2.3:a:nttdocomo:spmode_mail_android:2546:::::::*
nttdocomo	spmode_mail_android	2631	cpe:2.3:a:nttdocomo:spmode_mail_android:2631:::::::*
nttdocomo	spmode_mail_android	3000	cpe:2.3:a:nttdocomo:spmode_mail_android:3000:::::::*
nttdocomo	spmode_mail_android	3100	cpe:2.3:a:nttdocomo:spmode_mail_android:3100:::::::*
nttdocomo	spmode_mail_android	3200	cpe:2.3:a:nttdocomo:spmode_mail_android:3200:::::::*
nttdocomo	spmode_mail_android	3300	cpe:2.3:a:nttdocomo:spmode_mail_android:3300:::::::*
nttdocomo	spmode_mail_android	3400	cpe:2.3:a:nttdocomo:spmode_mail_android:3400:::::::*
nttdocomo	spmode_mail_android	4000	cpe:2.3:a:nttdocomo:spmode_mail_android:4000:::::::*
nttdocomo	spmode_mail_android	4200	cpe:2.3:a:nttdocomo:spmode_mail_android:4200:::::::*

Rows per page:

1-10 of 211

References

jvn.jp/en/jp/JVN82029095/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000037

osvdb.org/81629

secunia.com/advisories/48955

www.securityfocus.com/bid/53254

exchange.xforce.ibmcloud.com/vulnerabilities/75159

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

Low

EPSS

0.001

Percentile

41.0%

JSON

Related for NVD:CVE-2012-1244

cve1 cvelist1 jvn1 prion1