CVE-2012-6636

The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, which allows remote attackers to execute arbitrary methods of Java objects by using the Java Reflection API within crafted JavaScript code that is loaded into the WebView component in an application targeted to API level 16 or earlier, a related issue to CVE-2013-4710.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.internetsociety.org/ndss2014/programme#session3
http://openwall.com/lists/oss-security/2014/02/07/9
http://www.cs.utexas.edu/~shmat/shmat_ndss14nofrak.pdf	Exploit
http://developer.android.com/reference/android/webkit/WebView.html#addJavascriptInterface%28java.lang.Object,%20java.lang.String%29
http://50.56.33.56/blog/?p=314
http://developer.android.com/reference/android/os/Build.VERSION_CODES.html#JELLY_BEAN_MR1
https://support.lenovo.com/us/en/product_security/len_6421
http://jvn.jp/en/jp/JVN62161191/index.html

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:google:android_api::::::::
	cpe:2.3:a:google:android_api:15.0:::::::*
	cpe:2.3:a:google:android_api:14.0:::::::*
	cpe:2.3:a:google:android_api:13.0:::::::*
	cpe:2.3:a:google:android_api:8.0:::::::*
	cpe:2.3:a:google:android_api:7.0:::::::*
	cpe:2.3:a:google:android_api:6.0:::::::*
	cpe:2.3:a:google:android_api:5.0:::::::*
	cpe:2.3:a:google:android_api:12.0:::::::*
	cpe:2.3:a:google:android_api:10.0:::::::*
	cpe:2.3:a:google:android_api:3.0:::::::*
	cpe:2.3:a:google:android_api:11.0:::::::*
	cpe:2.3:a:google:android_api:9.0:::::::*
	cpe:2.3:a:google:android_api:2.0:::::::*
	cpe:2.3:a:google:android_api:1.0:::::::*
	cpe:2.3:a:google:android_api:4.0:::::::*

Information

Published : 2014-03-02 20:50

Updated : 2020-07-27 22:15

NVD link : CVE-2012-6636

Mitre link : CVE-2012-6636

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Advertisement

Products Affected

google

android_api

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.internetsociety.org/ndss2014/programme#session3", "name": "http://www.internetsociety.org/ndss2014/programme#session3", "tags": [], "refsource": "MISC"}, {"url": "http://openwall.com/lists/oss-security/2014/02/07/9", "name": "[oss-security] 20140207 Re: CVE request: multiple issues in Apache Cordova/PhoneGap", "tags": [], "refsource": "MLIST"}, {"url": "http://www.cs.utexas.edu/~shmat/shmat_ndss14nofrak.pdf", "name": "http://www.cs.utexas.edu/~shmat/shmat_ndss14nofrak.pdf", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://developer.android.com/reference/android/webkit/WebView.html#addJavascriptInterface%28java.lang.Object,%20java.lang.String%29", "name": "http://developer.android.com/reference/android/webkit/WebView.html#addJavascriptInterface%28java.lang.Object,%20java.lang.String%29", "tags": [], "refsource": "CONFIRM"}, {"url": "http://50.56.33.56/blog/?p=314", "name": "http://50.56.33.56/blog/?p=314", "tags": [], "refsource": "MISC"}, {"url": "http://developer.android.com/reference/android/os/Build.VERSION_CODES.html#JELLY_BEAN_MR1", "name": "http://developer.android.com/reference/android/os/Build.VERSION_CODES.html#JELLY_BEAN_MR1", "tags": [], "refsource": "CONFIRM"}, {"url": "https://support.lenovo.com/us/en/product_security/len_6421", "name": "https://support.lenovo.com/us/en/product_security/len_6421", "tags": [], "refsource": "CONFIRM"}, {"url": "http://jvn.jp/en/jp/JVN62161191/index.html", "name": "JVN#62161191", "tags": [], "refsource": "JVN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, which allows remote attackers to execute arbitrary methods of Java objects by using the Java Reflection API within crafted JavaScript code that is loaded into the WebView component in an application targeted to API level 16 or earlier, a related issue to CVE-2013-4710."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2012-6636", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2014-03-03T04:50Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:google:android_api:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "16.0"}, {"cpe23Uri": "cpe:2.3:a:google:android_api:15.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:14.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:13.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:12.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:11.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:google:android_api:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2020-07-28T05:15Z"}