CVE-2012-4006

Name of the Vulnerable Software and Affected Versions GREE application versions prior to 1.4.0 GREE Tanken Dorirando application versions prior to 1.0.7 GREE Tsurisuta application versions prior to 1.5.0 GREE Monpura application versions prior to 1.1.1 GREE Kaizokuoukoku Columbus application versions prior to 1.3.5 GREE haconiwa application versions prior to 1.1.0 GREE Seisen Cerberus application versions prior to 1.1.0 KDDI&GREE GREE Market application versions prior to 2.1.2 for Android

Description The issue allows remote attackers to obtain sensitive information via a crafted application due to improper implementation of the WebView class.

Recommendations Update the GREE application to version 1.4.0 or later. Update the GREE Tanken Dorirando application to version 1.0.7 or later. Update the GREE Tsurisuta application to version 1.5.0 or later. Update the GREE Monpura application to version 1.1.1 or later. Update the GREE Kaizokuoukoku Columbus application to version 1.3.5 or later. Update the GREE haconiwa application to version 1.1.0 or later. Update the GREE Seisen Cerberus application to version 1.1.0 or later. Update the KDDI&GREE GREE Market application to version 2.1.2 or later for Android.