Multiple HTC Devices 'Android.permission.ACCESS_WIFI_STATE' Information Disclosure Vulnerability
BID:51790
Info
Multiple HTC Devices 'Android.permission.ACCESS_WIFI_STATE' Information Disclosure Vulnerability
| Bugtraq ID: | 51790 |
| Class: | Design Error |
| CVE: |
CVE-2011-4872 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 01 2012 12:00AM |
| Updated: | Feb 01 2012 12:00AM |
| Credit: | Chris Hessing and Bret Jordan |
| Vulnerable: |
HTC Thunderbolt 4G FRG83D HTC Sensation Z710e GRI40 HTC Sensation 4G GRI40 HTC Glacier FRG83 HTC EVO 4G GRI40 HTC EVO 3D GRI40 HTC Droid Incredible FRF91 HTC Desire S GRI40 HTC Desire HD 0 |
| Not Vulnerable: | |
Discussion
Multiple HTC Devices 'Android.permission.ACCESS_WIFI_STATE' Information Disclosure Vulnerability
Multiple HTC devices are prone to an information-disclosure vulnerability.
An attacker can exploit this issue by enticing an unsuspecting victim to install a malicious application with 'android.permission.ACCESS_WIFI_STATE' and 'android.permission.INTERNET' permissions on the device running Android.
Remote attackers can exploit this issue to gain access to sensitive information. This may aid in further attacks.
Multiple HTC devices are prone to an information-disclosure vulnerability.
An attacker can exploit this issue by enticing an unsuspecting victim to install a malicious application with 'android.permission.ACCESS_WIFI_STATE' and 'android.permission.INTERNET' permissions on the device running Android.
Remote attackers can exploit this issue to gain access to sensitive information. This may aid in further attacks.