PT-2010-1930 · Symantec · Symantec Norton Mobile Security

Published

2010-11-15

Updated

2017-08-17

CVE-2010-0113

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Symantec Norton Mobile Security application version 1.0 Beta for Android

Description The issue allows user-assisted remote attackers to obtain potentially sensitive information, including wipe/lock credentials, by leveraging the ability of a separate crafted application to read device logs where setup details are recorded.

Recommendations For Symantec Norton Mobile Security application version 1.0 Beta for Android, consider restricting access to device logs to minimize the risk of sensitive information exposure until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2010-0113

Affected Products

Symantec Norton Mobile Security

PT-2010-1930 · Symantec · Symantec Norton Mobile Security

CVE-2010-0113

Weakness Enumeration

Related Identifiers

Affected Products

References · 6