Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv2

CVE-2012-2980

Published: 21/08/2012 Updated: 21/08/2012
CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6
VMScore: 632
Vector: AV:N/AC:M/Au:N/C:C/I:N/A:N
Subscribe to Merge

Vulnerability Summary

The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffer, which allows remote malicious users to obtain sensitive information via a crafted application, as demonstrated by PIN numbers, telephone numbers, and text messages.

Vulnerable Product Search on Vulmon Subscribe to Product

htc merge -

sprint evo shift 4g -

htc chacha -

att status -

t-mobile g2 -

samsung galaxy s -

t-mobile mytouch 3g slide -

htc desire -

t-mobile mytouch 4g slide -

References

CWE-255http://www.htc.com/www/help/app-security-fix/http://www.kb.cert.org/vuls/id/MAPG-8R5LD6http://www.kb.cert.org/vuls/id/251635https://nvd.nist.govhttps://www.kb.cert.org/vuls/id/251635
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook