CVE-2014-8610 in Android情報

要約

〜によって MITRE

AndroidManifest.xml in Android before 5.0.0 does not require the SEND_SMS permission for the SmsReceiver receiver, which allows attackers to send stored SMS messages, and consequently transmit arbitrary new draft SMS messages or trigger additional per-message charges from a network operator for old messages, via a crafted application that broadcasts an intent with the com.android.mms.transaction.MESSAGE_SENT action, aka Bug 17671795.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

予約する

2014年11月04日

モデレーション

承諾済み

エントリ

VDB-68302

エクスプロイト

ダウンロード

EPSS

0.00342

アクティビティ

非常低い

ソース

Do you know our Splunk app?

Download it now for free!