1 results (0.001 seconds)

CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 0

The CallConfirm (jp.gr.java_conf.ofnhwx.callconfirm) application 2.0.0 for Android does not properly protect data, which allows remote attackers to read or modify allow/block lists via a crafted application. La aplicación CallConfirm (jp.gr.java_conf.ofnhwx.callconfirm) v2.0.0 para Android no protege correctamente los datos, lo que permite a atacantes remotos leer o modificar listas permitir/bloquear a través de una aplicación modificada. • http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4701-vulnerability-in-CallConfirm.html • CWE-264: Permissions, Privileges, and Access Controls •