Google · Android · CVE-2010-4804
**Name of the Vulnerable Software and Affected Versions**
Android versions prior to 2.3.4
**Description**
The issue allows remote attackers to obtain SD card contents via crafted content:// URIs, related to (1) BrowserActivity.java and (2) BrowserSettings.java in com/android/browser/.
**Recommendations**
For versions prior to 2.3.4, update to version 2.3.4 or later to resolve the issue.