4 matches found
CVE-2013-3646
The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression...
Design/Logic Flaw
The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression...
Android Cyobozu Live 任意代码执行漏洞(CVE-2012-4008)
Bugtraq ID:55357 CVE ID:CVE-2012-4008 Android Cybozu Live application是一款基于安卓的办公软件手机应用。 Android Cybozu Live存在一个安全漏洞,允许远程攻击者通过构建恶意WEB站,诱使应用程序解析,执行任意Java方法,可获得敏感信息或执行任意命令。 0 Cybozu Live application 1.0.4 厂商解决方案 用户可联系供应商获得最新的应用程序: http://magazine.cybozulive.com/2012/08/291200.html...
CVE-2012-4008
Summary: CVE-2012-4008 affects Cybozu Live for Android versions 1.0.4 and earlier. A crafted web site can trigger the app to parse content and execute arbitrary Java methods, potentially leaking information or allowing arbitrary OS commands. This is a remote, browser-driven code-execution vulnera...