Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

google android 2.3.4 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2011-2357
Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 and 3.1 allows local applications to bypass the sandbox and execute arbitrary Javascript in arbitrary domains by (1) causing the MAX_TAB number of tabs to be opened, then loading...
Google Android 3.1Google Android 2.3.4
NA
CVE-2011-4276
The Bluetooth service (com/android/phone/BluetoothHeadsetService.java) in Android 2.3 before 2.3.6 allows remote attackers within Bluetooth range to obtain contact data via an AT phonebook transfer....
Google Android 2.3.5Google Android 2.3.3Google Android 2.3Google Android 2.3.4
NA
CVE-2011-2344
Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures and web albums by sniffing the token from connections with...
Google Android 2.2Google Android 2.3.4Google Android 3.0Google Android 2.3Google Android 2.2.1Google Android 2.1Google Android 2.2.2Google Android 2.3.3
NA
CVE-2011-3874
Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the FrameworkListener::dispatchCommand method with the wrong number of arguments, as...
Google Android 2.3Google Android 2.3.3Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.3.1Google Android 2.3.2
NA
CVE-2011-1350
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device....
Google Android 2.3.4Google Android 2.3.3Google Android 2.3.2Google Android 2.3.1Google AndroidGoogle Android 2.2.3Google Android 2.2.1Google Android 1.6Google Android 1.1Google Android 2.2Google Android 2.1Google Android 2.0.1Google Android 2.0Google Android 2.3Google Android 2.2.2Google Android 1.5Google Android 1.0
NA
CVE-2011-1352
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device....
Google Android 2.3.4Google Android 1.1Google Android 1.0Google AndroidGoogle Android 2.3.3Google Android 2.3.1Google Android 2.0.1Google Android 1.6Google Android 2.2.3Google Android 2.2.2Google Android 2.2.1Google Android 2.2Google Android 2.3.2Google Android 2.3Google Android 2.1Google Android 2.0Google Android 1.5
NA
CVE-2011-3975
A certain HTC update for Android 2.3.4 build GRJ22, when the Sense interface is used on the HTC EVO 3D, EVO 4G, ThunderBolt, and unspecified other devices, provides the HtcLoggers.apk application, which allows user-assisted remote attackers to obtain a list of telephone numbers...
Google Android 2.3.4Htc Evo 4gHtc ThunderboltHtc Evo 3d
NA
CVE-2012-4222
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center (QuIC) Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service (NULL pointer dereference) via an application that uses crafted arguments in a local kgsl_ioctl call....
Google Android 3.1Google Android 3.2Google Android 3.0Google Android 3.2.2Google Android 2.3.5Google Android 2.3.7Google Android 3.2.6Google Android 4.0Google Android 4.0.1Google Android 2.3Google Android 2.3.1Google Android 2.3.2Google Android 2.3.3Google Android 4.1Google Android 4.0.4Google Android 4.0.3Google Android 4.0.2Google Android 2.3.4Google Android 2.3.6Google Android 3.2.1Google Android 3.2.4Google Android 4.2
NA
CVE-2012-4221
Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses crafted arguments in a local...
Google Android 2.3Google Android 2.3.1Google Android 2.3.2Google Android 4.0Google Android 4.1Google Android 4.0.4Google Android 4.0.3Google Android 2.3.4Google Android 2.3.6Google Android 3.2.1Google Android 3.2.4Google Android 4.0.2Google Android 4.2Google Android 2.3.7Google Android 3.1Google Android 3.2Google Android 3.0Google Android 2.3.3Google Android 2.3.5Google Android 3.2.2Google Android 3.2.6Google Android 4.0.1
NA
CVE-2012-4220
diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference) via an application that uses crafted arguments...
Google Android 2.3.3Google Android 2.3.5Google Android 2.3.7Google Android 3.2.2Google Android 3.2.6Google Android 4.0.1Google Android 2.3Google Android 3.1Google Android 3.2Google Android 3.0Google Android 2.3.1Google Android 2.3.2Google Android 4.0Google Android 4.1Google Android 4.0.4Google Android 4.0.3Google Android 2.3.4Google Android 2.3.6Google Android 3.2.1Google Android 3.2.4Google Android 4.0.2Google Android 4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
wirelessSQLCVE-2023-1454overflowCVE-2022-48425CVE-2023-25064CVE-2023-28107
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook