The Android browser in Android before 2.3.4 allows remote attackers to obtain SD card contents via crafted content:// URIs, related to (1) BrowserActivity.java and (2) BrowserSettings.java in com/android/browser/.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2011-06-09 03:36
Updated : 2011-10-26 20:20
NVD link : CVE-2010-4804
Mitre link : CVE-2010-4804
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
- android