CVE-2012-2217

The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2012-04/0176.html
http://www.vsecurity.com/resources/advisory/20120420-1/
https://exchange.xforce.ibmcloud.com/vulnerabilities/75080
http://www.securityfocus.com/bid/53187

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:htc:evo_4g_software:3.70.651.1:::::::*
	cpe:2.3:a:htc:evo_4g_software:3.30.651.3:::::::*
	cpe:2.3:a:htc:evo_4g_software:3.30.651.2:::::::*
	cpe:2.3:a:htc:evo_4g_software:3.29.651.5:::::::*
	cpe:2.3:a:htc:evo_4g_software::::::::
	cpe:2.3:a:htc:evo_4g_software:4.53.651.1:::::::*
	cpe:2.3:a:htc:evo_4g_software:3.26.651.6:::::::*
	cpe:2.3:a:htc:evo_4g_software:1.47.651.1:::::::*
	cpe:2.3:a:htc:evo_4g_software:1.32.651.1:::::::*
	cpe:2.3:a:htc:evo_4g_software:4.24.651.1:::::::*
	cpe:2.3:a:htc:evo_4g_software:4.22.651.2:::::::*

OR	cpe:2.3:h:htc:evo_4g:-:::::::*
	cpe:2.3:h:htc:evo_4g:gri40:::::::*

Configuration 2 (hide)

AND

OR	cpe:2.3:a:htc:evo_design_4g_software::::::::
	cpe:2.3:a:htc:evo_design_4g_software:1.19.651.0:::::::*

cpe:2.3:h:htc:evo_design_4g:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

OR	cpe:2.3:a:htc:shift_4g_software::::::::
	cpe:2.3:a:htc:shift_4g_software:2.75.651.5:::::::*
	cpe:2.3:a:htc:shift_4g_software:2.75.651.4:::::::*
	cpe:2.3:a:htc:shift_4g_software:1.17.651.1:::::::*

cpe:2.3:h:htc:shift_4g:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

OR	cpe:2.3:a:htc:evo_3d_software::::::::
	cpe:2.3:a:htc:evo_3d_software:2.08.651.2:::::::*
	cpe:2.3:a:htc:evo_3d_software:1.13.651.7:::::::*
	cpe:2.3:a:htc:evo_3d_software:1.11.651.3:::::::*

OR	cpe:2.3:h:htc:evo_3d::::::::
	cpe:2.3:h:htc:evo_3d:gri40:::::::*

Configuration 5 (hide)

AND

OR	cpe:2.3:a:htc:evo_view_4g_software::::::::
	cpe:2.3:a:htc:evo_view_4g_software:1.22.651.1:::::::*

cpe:2.3:h:htc:evo_view_4g:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:a:htc:vivid_software:*:*:*:*:*:*:*:*

cpe:2.3:h:htc:vivid:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

OR	cpe:2.3:a:htc:hero_software:1.56.651.2:::::::*
	cpe:2.3:a:htc:hero_software:1.29.651.1:::::::*
	cpe:2.3:a:htc:hero_software:2.32.651.2:::::::*
	cpe:2.3:a:htc:hero_software:2.31.651.7:::::::*
	cpe:2.3:a:htc:hero_software:2.27.651.6:::::::*
	cpe:2.3:a:htc:hero_software:2.27.651.5:::::::*

cpe:2.3:h:htc:hero:-:*:*:*:*:*:*:*

Information

Published : 2012-05-01 07:55

Updated : 2017-12-13 18:29

NVD link : CVE-2012-2217

Mitre link : CVE-2012-2217

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Products Affected

htc

shift_4g
evo_3d_software
shift_4g_software
evo_view_4g_software
evo_4g
evo_4g_software
hero
evo_design_4g
evo_design_4g_software
evo_3d
vivid
vivid_software
hero_software
evo_view_4g

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2012-04/0176.html", "name": "20120421 HTC IQRD Android Permission Leakage (CVE-2012-2217)", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.vsecurity.com/resources/advisory/20120420-1/", "name": "http://www.vsecurity.com/resources/advisory/20120420-1/", "tags": [], "refsource": "MISC"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75080", "name": "htc-iqrd-sec-bypass(75080)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/bid/53187", "name": "53187", "tags": [], "refsource": "BID"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2012-2217", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 4.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2012-05-01T14:55Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:3.70.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:3.30.651.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:3.30.651.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:3.29.651.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.54.651.1"}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:4.53.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:3.26.651.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:1.47.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:1.32.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:4.24.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_4g_software:4.22.651.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:evo_4g:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:htc:evo_4g:gri40:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:evo_design_4g_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.19.651.1"}, {"cpe23Uri": "cpe:2.3:a:htc:evo_design_4g_software:1.19.651.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:evo_design_4g:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:shift_4g_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.76.651.6"}, {"cpe23Uri": "cpe:2.3:a:htc:shift_4g_software:2.75.651.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:shift_4g_software:2.75.651.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:shift_4g_software:1.17.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:shift_4g:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:evo_3d_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.08.651.3"}, {"cpe23Uri": "cpe:2.3:a:htc:evo_3d_software:2.08.651.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_3d_software:1.13.651.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:evo_3d_software:1.11.651.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:evo_3d:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:htc:evo_3d:gri40:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:evo_view_4g_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.22.651.2"}, {"cpe23Uri": "cpe:2.3:a:htc:evo_view_4g_software:1.22.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:evo_view_4g:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:vivid_software:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.26.502"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:vivid:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:htc:hero_software:1.56.651.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:hero_software:1.29.651.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:hero_software:2.32.651.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:hero_software:2.31.651.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:hero_software:2.27.651.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:htc:hero_software:2.27.651.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:htc:hero:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-12-14T02:29Z"}

6.4 /10