Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
BID:69046
Info
Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
| Bugtraq ID: | 69046 |
| Class: | Input Validation Error |
| CVE: |
CVE-2014-3502 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 04 2014 12:00AM |
| Updated: | Dec 09 2014 12:57AM |
| Credit: | David Kaplan and Roee Hay of IBM Security Systems. |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
Apache Cordova For Android is prone to an information-disclosure vulnerability.
Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks.
Apache Cordova for Android versions 3.5.0 and prior are vulnerable.
Apache Cordova For Android is prone to an information-disclosure vulnerability.
Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks.
Apache Cordova for Android versions 3.5.0 and prior are vulnerable.
Exploit / POC
Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
An attacker can exploit this issue using a web browser.
An attacker can exploit this issue using a web browser.
Solution / Fix
Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Apache Cordova For Android CVE-2014-3502 Information Disclosure Vulnerability
References:
References: