CVE-2012-2980 in Galaxy Sinfo

Summary

The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffer, which allows remote attackers to obtain sensitive information via a crafted application, as demonstrated by PIN numbers, telephone numbers, and text messages.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

05/30/2012

Disclosure

08/21/2012

Moderation

VulDB entry created

Entries

VDB-6026 (2)

CPE

ready

CWE

CWE-255 (Confirmed)

CVSS

5.5

EPSS

0.03247

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2980
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2980
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2980/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!