12 matches found
EUVD-2018-13077
Malware in sbrugna...
CVE-2018-20523
Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. In other words, a third-party application can read the user's cleartext browser history via an app.provider.query...
Android Open Source Platform (AOSP) Browser UXSS
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scripting UXSS vulnerability...
Xiaomi Redmi Note 5 Pro Xiaomi Stock Browser Information Disclosure Vulnerability
Xiaomi Redmi Note 5 Pro is a smartphone from Chinese company Xiaomi Technology Xiaomi.Xiaomi Stock Browser is one of the stock browsers. An information disclosure vulnerability exists in version 10.2.4.g of the Xiaomi Stock Browser in the Xiaomi Redmi Note 5 Pro. The vulnerability stems from an...
CVE-2018-20523
Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. In other words, a third-party application can read the user's cleartext browser history via an app.provider.query...
CVE-2018-20523
CVE-2018-20523 affects Xiaomi Stock Browser 10.2.4.g on Redmi Note 5 Pro and other Redmi Android phones. The issue is a content provider injection in the vulnerable component com.android.browser.searchhistory, allowing a third‑party app to read the user’s cleartext browser history via a query to ...
Android Stock Browser Remote Denial of Service Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Stock Browser is a browser component. A remote denial of service vulnerability exists in Android Stock Browser versions 2.1 and 2.2, which can be exploited by an attacker...
Android stock browser vulnerable to denial-of-service (DoS)
Overview The Android stock browser contains a denial-of-service DoS vulnerability. Junichi MURAKAMI of FFRI, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact When receiving a specially crafted packet, th...
JVN#09470233: Android stock browser vulnerable to denial-of-service (DoS)
The Android stock browser contains a denial-of-service DoS vulnerability. Impact When receiving a specially crafted packet, the Android stock browser may crash. Solution Do not use Android stock browser If using an affected version of the Android stock browser, it is recommended to use another...
Android Stock Browser Iframe DOS
This module exploits a vulnerability in the native browser that comes with Android 4.0.3. If successful, the browser will crash after viewing the webpage. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
Address-Spoofing Bug Haunts Android Stock Browser
There’s an easily exploitable vulnerability in the Android stock browser that enables an attacker to spoof the URL in the address bar and force a victim to visit a malicious site while believing he is visiting a benign one. Security researcher Rafay Baloch discovered the vulnerability and develop...
New Android Exploit Could Force Factory Reset remotely
Clicking one wrong link can cause malicious code to execute, which could do anything from infecting your computer with malware to, apparently, wiping your phone data completely. At the Ekoparty security conference, researcher Ravi Borganokar demonstrated at the Ekoparty security conference in...