PT-2012-5144 · Jigbrowser+ · Jigbrowser+
Gaku Mochizuki
·
Publicado
2012-09-28
·
Atualizado
2013-03-02
·
CVE-2012-4017
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
jigbrowser+ version 1.4.9 and earlier
Description
The issue is related to the improper implementation of the WebView class in the jigbrowser+ application, allowing remote attackers to obtain sensitive information via a crafted application.
Recommendations
For jigbrowser+ versions prior to 1.5.0, update to version 1.5.0 or later to resolve the issue.
Correção
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Jigbrowser+