CVE-2011-2344

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures and web albums by sniffing the token from connections with picasaweb.google.com.

Android Picasa en Android v3.0 y v2.x hasta v2.3.4 usa sesion HTTP en texto claro cuando se transmite el authToken obtenido de ClientLogin, lo que permite a usuarios remotos ganar privilegios y acceder a imagenes y albumes privados esnifando el token de conexiones con picasaweb.google.com

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-06-02 CVE Reserved
2011-07-08 CVE Published
2024-09-16 CVE Updated
2024-09-17 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-310: Cryptographic Issues

CAPEC

References (3)

URL	Tag	Source
http://android.git.kernel.org/?p=platform/packages/apps/Gallery3D.git%3Ba=commit%3Bh=7a763db1c15bb6436be85a3f23382e4171970b6e	X_refsource_confirm
http://android.git.kernel.org/?p=platform/packages/apps/Gallery3D.git%3Ba=commit%3Bh=9a418de454e5ce078c98f41b5c18e3bb9175bd20	X_refsource_confirm
http://www.uni-ulm.de/en/in/mi/staff/koenings/catching-authtokens.html	X_refsource_misc

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.1 Search vendor "Google" for product "Android" and version "2.1"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.2 Search vendor "Google" for product "Android" and version "2.2"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.2 Search vendor "Google" for product "Android" and version "2.2"		rev1		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.2.1 Search vendor "Google" for product "Android" and version "2.2.1"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.2.2 Search vendor "Google" for product "Android" and version "2.2.2"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.3 Search vendor "Google" for product "Android" and version "2.3"		rev1		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.3.3 Search vendor "Google" for product "Android" and version "2.3.3"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				2.3.4 Search vendor "Google" for product "Android" and version "2.3.4"		-		Affected
Google Search vendor "Google"		Android Search vendor "Google" for product "Android"				3.0 Search vendor "Google" for product "Android" and version "3.0"		-		Affected