Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
BID:69041
Info
Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
| Bugtraq ID: | 69041 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-3501 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 04 2014 12:00AM |
| Updated: | Dec 09 2014 12:57AM |
| Credit: | David Kaplan and Roee Hay of IBM Security Systems. |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
Apache Cordova for Android is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Apache Cordova for Android versions 3.5.0 and prior are vulnerable.
Apache Cordova for Android is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Apache Cordova for Android versions 3.5.0 and prior are vulnerable.
Exploit / POC
Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Apache Cordova For Android CVE-2014-3501 Security Bypass Vulnerability
References:
References: