CVE-2014-8610 in Androidالمعلومات

الملخص

بحسب MITRE

AndroidManifest.xml in Android before 5.0.0 does not require the SEND_SMS permission for the SmsReceiver receiver, which allows attackers to send stored SMS messages, and consequently transmit arbitrary new draft SMS messages or trigger additional per-message charges from a network operator for old messages, via a crafted application that broadcasts an intent with the com.android.mms.transaction.MESSAGE_SENT action, aka Bug 17671795.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

04/11/2014

إفشاء

15/12/2014

الاعتدال

تمت الموافقة

إدخال

VDB-68302

استغلال

تحميل

EPSS

0.00342

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!