CVE-2011-0680
Published Jan 31, 2011
Last updated a year ago
Overview
- Description
- data/WorkingMessage.java in the Mms application in Android before 2.2.2 and 2.3.x before 2.3.2 does not properly manage the draft cache, which allows remote attackers to read SMS messages intended for other recipients in opportunistic circumstances via a standard text messaging service.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E6C3F8E-2B91-425F-8134-CEB2BEE12EFA",
"versionEndIncluding": "2.2.1"
},
{
"criteria": "cpe:2.3:o:google:android:1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C354829-6BEB-4C67-972A-60367073753C"
},
{
"criteria": "cpe:2.3:o:google:android:1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "702B40EB-76BC-4686-A46E-D02DBE3A86E7"
},
{
"criteria": "cpe:2.3:o:google:android:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A33DBF65-09A6-4149-BABE-2FFFBF10C31D"
},
{
"criteria": "cpe:2.3:o:google:android:2.2:rev1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1755B91-1B6B-4A9E-BB6B-22B399A6DD02"
},
{
"criteria": "cpe:2.3:o:google:android:2.3:rev1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61D64B87-F1F1-4E52-86AE-F28E2C43A9A8"
}
],
"operator": "OR"
}
]
}
]