Android Picasa Exploit

		PPCGeeks > Site Information > Smartphone News
Android Picasa Exploit

Community

LinkBack

Thread Tools

Display Modes

#1 (permalink)

07-14-2011, 09:37 AM

tsowen

Retired Staff

Offline

Pocket PC: Samsung Galaxy S ll, Epic 4G Touch

Carrier: Sprint

Location: San Antonio

Join Date: Mar 2007

Posts: 4,849

Reputation: 78880
tsowen can't get a higher reputation level

Mentioned: 8 Post(s)

Tagged: 1 Thread(s)

Android Picasa Exploit

Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures and web albums by sniffing the token from connections with picasaweb.google.com.

Source: National Vulnerability Database (NVD) National Vulnerability Database (CVE-2011-2344)

This post has been thanked 2 times.

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On Forum Rules

All times are GMT -4. The time now is 09:23 AM.