CVE-2011-3975

Name of the Vulnerable Software and Affected Versions HTC devices with Android 2.3.4 build GRJ22

Description The issue allows user-assisted remote attackers to obtain sensitive information, including a list of telephone numbers from a log, by leveraging the android.permission.INTERNET application permission. This is achieved by establishing TCP sessions to 127.0.0.1 on port 65511 and a second port. The HtcLoggers.apk application, provided by a certain HTC update, is the vulnerable component.

Recommendations For HTC devices with Android 2.3.4 build GRJ22, consider restricting the use of the HtcLoggers.apk application until a patch is available. As a temporary workaround, restrict access to the android.permission.INTERNET application permission to minimize the risk of exploitation. Avoid establishing TCP sessions to 127.0.0.1 on port 65511 and the second port used by the HtcLoggers.apk application.