Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 03/03/2014 Updated: 07/03/2014

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

The Edinburgh by Bus application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote malicious users to execute arbitrary JavaScript code, and consequently access external-storage resources, by leveraging control over one of a number of "obscure Eastern European dating sites."

Vulnerable Product	Search on Vulmon	Subscribe to Product
edinburghtour edinburgh_by_bus -

CWE-264 http://openwall.com/lists/oss-security/2014/02/07/9 http://www.internetsociety.org/ndss2014/programme#session3 http://www.cs.utexas.edu/~shmat/shmat_ndss14nofrak.pdf https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-1886

Vulnerability Summary

References

Vulmon Search

About

Products

Connect