Tamami Eguchi

**Name of the Vulnerable Software and Affected Versions** Android versions 3.0 through 4.1.x **Description** The issue is related to the improper implementation of the WebView class, which allows remote attackers to execute arbitrary methods of Java objects or cause a denial of service (reboot) via a crafted web page. This can be achieved by using the `WebView.addJavascriptInterface` method. **Recommendations** For Android versions 3.0 through 4.1.x, consider disabling the `WebView.addJavascriptInterface` method as a temporary workaround until a patch is available. Restrict access to the WebView class to minimize the risk of exploitation.