Rocky K. C. Chang

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 9 **Description** The issue is related to how WebKit in iOS handles "Content-Disposition: attachment" HTTP headers, which could allow man-in-the-middle attackers to obtain sensitive information. Exploitation of this issue may enable a remote attacker to access protected information by conducting man-in-the-middle attacks. **Recommendations** For versions prior to 9, update to iOS version 9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WaliSMS CN (cn.com.wali.walisms) versions 2.9.2 through 3.7.0 **Description** The issue concerns an unspecified vulnerability in the WaliSMS CN application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 2.9.2 through 3.7.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Message Forwarder (com.gmail.zbnetium) version 1.12.20110409.1 **Description** The issue concerns an unspecified vulnerability in the Message Forwarder application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Textdroid version 2.5.2 **Description** The issue concerns an unspecified vulnerability in the Textdroid application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NetFront Life Browser versions 2.2.0 through 2.3.0 **Description** The issue concerns an unspecified vulnerability in the NetFront Life Browser application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 2.2.0 and 2.3.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TouchPal Contacts versions 3.3.1 and 4.0.1 **Description** The issue concerns an unspecified vulnerability in the TouchPal Contacts application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For version 3.3.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For version 4.0.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** YagattaTalk Messenger version 1.00.01.08 **Description** The issue concerns an unspecified vulnerability in the YagattaTalk Messenger application for Android. The impact and attack vectors of this issue are unknown. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tiny Password version 1.64 **Description** The issue concerns an unspecified vulnerability in the Tiny Password application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AContact (com.movester.quickcontact) version 1.8.2 **Description** The issue concerns an unspecified vulnerability in the AContact application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Pansi SMS (com.pansi.msg) versions 1.97, 2.01, and 2.07 **Description** The issue concerns an unspecified vulnerability in the Pansi SMS application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For version 1.97, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For version 2.01, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For version 2.07, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cnectd (mci.cnectd) version 3.1.0 **Description** The issue concerns an unspecified vulnerability in the Cnectd application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** App Lock (com.cc.applock) versions 1.7.5 through 1.7.6 **Description** The issue concerns an unspecified vulnerability in the App Lock application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For App Lock (com.cc.applock) versions 1.7.5 and 1.7.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Youni SMS (com.snda.youni) versions 2.1.0c through 2.1.0d **Description** The issue concerns an unspecified vulnerability in the Youni SMS application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 2.1.0c and 2.1.0d, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** KKtalk versions 4.0.0 through 4.1.5 **Description** The issue concerns an unspecified vulnerability in the KKtalk application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 4.0.0 through 4.1.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** UCMobile BloveStorm (com.blovestorm) versions 2.2.0 through 3.2.1 **Description** The issue concerns an unspecified vulnerability in the UCMobile BloveStorm application. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 2.2.0 through 3.2.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GO FBWidget (com.gau.go.launcherex.gowidget.fbwidget) versions 1.9 through 2.1 **Description** The issue concerns an unspecified vulnerability in the GO FBWidget application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 1.9 through 2.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GO TwiWidget (com.gau.go.launcherex.gowidget.twitterwidget) versions 1.7 through 2.1 **Description** The issue concerns an unspecified vulnerability in the GO TwiWidget application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 1.7 through 2.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GO QQWeiboWidget version 1.2 **Description** The issue concerns an unspecified vulnerability in the GO QQWeiboWidget application for Android. The impact and attack vectors of this issue are unknown. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GO SMS Pro versions 3.72, 4.10, and 4.35 **Description** The issue concerns an unspecified vulnerability in the GO SMS Pro application for Android. The impact and attack vectors of this issue are unknown. **Recommendations** For version 3.72, there is no information about a newer version that contains a fix for this issue. For version 4.10, there is no information about a newer version that contains a fix for this issue. For version 4.35, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Dolphin Browser HD versions 6.2.0 through 7.4.0 **Description** The issue concerns an unspecified vulnerability in the Dolphin Browser HD application for Android. Details about the impact and attack vectors of this issue are not provided. **Recommendations** For versions 6.2.0 through 7.4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.