Spotify Music 'com.spotify.mobile.android.ui.activity.TosTextActivity' Security Bypass Vulnerability
BID:69061
Info
Spotify Music 'com.spotify.mobile.android.ui.activity.TosTextActivity' Security Bypass Vulnerability
| Bugtraq ID: | 69061 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 05 2014 12:00AM |
| Updated: | Aug 05 2014 12:00AM |
| Credit: | Trend Micro |
| Vulnerable: |
Spotify Ltd Spotify Music 1.1.0.113 |
| Not Vulnerable: |
Spotify Ltd Spotify Music 1.1.1 |
Discussion
Spotify Music 'com.spotify.mobile.android.ui.activity.TosTextActivity' Security Bypass Vulnerability
Spotify Music is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Spotify prior to version 1.1.1 are vulnerable.
Spotify Music is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Spotify prior to version 1.1.1 are vulnerable.
Exploit / POC
Spotify Music 'com.spotify.mobile.android.ui.activity.TosTextActivity' Security Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Spotify Music 'com.spotify.mobile.android.ui.activity.TosTextActivity' Security Bypass Vulnerability
References:
References:
- Spotify Music Download Page (Google)
- Vulnerability in Spotify Android App May Lead to Phishing (Trend Micro)