CVE-2013-2304

{"id": "CVE-2013-2304", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-04-16T14:04:31.273", "references": [{"url": "http://jvn.jp/en/jp/JVN02895867/index.html", "source": "vultures@jpcert.or.jp"}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000033", "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page."}, {"lang": "es", "value": "La aplicaci\u00f3n Sleipnir Mobile v2.8.0 y anteriores y Sleipnir Mobile Black Edition v2.8.0 y versiones anteriores para Android permite a atacantes remotos cargar Extension APIs de forma arbitraria, y generar descargas u obtener informaci\u00f3n sensible mediante informaci\u00f3n de HTTP response-body, mediante una p\u00e1gina especialmente dise\u00f1ada."}], "lastModified": "2013-04-16T14:04:31.273", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42BC8D18-300C-46EE-9A95-31A777392897", "versionEndIncluding": "2.8.0"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA07915B-2FE8-4221-A025-DAC5A75A1DCB"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:beta_update1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2902659-270F-438F-937D-8CCB59CF6118"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:rc:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04620C25-02F3-460A-A1AE-470B3C40013E"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC33DC4D-5F7B-4941-AAF5-4FA0DD04637E"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5FB5C98-CB3D-4307-9B5D-491EFF911645"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "080CBAC1-4D96-43BD-9068-5398FEC3C44A"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0A2CBA2-E4D7-46CE-9617-8C38CDDBC662"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4DA4D0B-44C6-45B3-9ED0-A0C308E71EB5"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB8ED8D7-70BF-4889-A416-BF1FBB8E63BF"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74B07D69-2DB1-4E44-96F9-246C7B2758E2"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B8A6B1B-56F7-43B5-9A23-E7A05FFBD1E0"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B900B61-CF5F-4CF5-96D4-CE0E06131A0A"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A183983-B813-48F3-870F-FB46A2A2C040"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F2E802E-2F1C-470E-9D8B-C0E795FBCA85"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F483B292-70B2-4ACB-A289-E83B903C2DBF"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "32CB09CB-4EC5-4E50-B09C-8ABD73D39B53"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41A6C11D-C1D4-4D8F-B001-E0291A613296"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A82B5677-139B-40D1-90C3-27F7D67E899C"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4FE1731-1C48-49E0-BC73-B62CFD7CD826"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39B18D06-11F4-4ECF-A1B1-2F89027CC5A3"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE06030A-E094-4908-9A6D-7F4AEC5ECEB2"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D5A3505-E374-43DB-8003-CA61705F42B4"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1090D09C-EE15-4ED9-8D4E-73BB81B26DFF"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91C5363D-350C-4AA5-ACB6-A5BC3A9B7DB5"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "854585B4-D7E9-4E1D-AC9C-FEE3CE83B48D"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79E2F9A3-EE04-45A6-B0CA-4F83899AB8BA"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F669D9D-7E10-450B-A937-1C5AA692F42D"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "055F04AB-83A1-4503-9648-5D0E5F533F19"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06E3304E-C664-410F-AF02-6E492C9F84C6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8255F035-04C8-4158-B301-82101711939C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:*:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4553A289-E5DD-4FE2-862C-26CD28343AE8", "versionEndIncluding": "2.8.0"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:alpha:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA5B020D-8DD0-4D36-91E1-839D3224B7FA"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:beta_update1:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D3321AE-7572-4CC0-A4BF-B22F3DCA7FDB"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:rc:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A28BEC46-501E-4D10-827F-F59D40A11CB4"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.1.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81943E1A-A543-4BCD-9A93-EF22F38C3776"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.2.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6B2C471-87F3-46BB-B68E-E35109948A28"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.3.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D1B9092-6C0D-4C36-BE46-3135926189F1"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.4.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "576975B3-F9B8-4AD7-A29C-54BDAFAE273E"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E59E3FC-F8A7-4E67-B426-FBA6E59C8C9E"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "099C6540-9635-4265-8BCB-F645312418FE"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.6.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBBF59C7-FECE-4DD1-9291-4C13D508DC17"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.7.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A2A8F75-5819-4936-ABFF-5B39C6341F8D"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.7.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D150DDD4-9372-4AE5-A3D5-6314AD0853FF"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48BB80C7-2D4C-491F-A3CC-22DA9A9184F5"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86451F7E-2B6E-4708-AC7C-BE407D3540C6"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.2:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7F39BB9-4140-4FE2-98AA-B341F64083B3"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.3:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4892F4DC-B60F-4C2A-A3FE-6EF298F40F50"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.0.4:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25522D1E-6C83-43A2-8159-536599C96BB8"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.1.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2919501-49B6-4A68-806D-2FD1D279BF72"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EF0C1B9-E941-4810-9DCA-2DA7A7E6A9B1"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC4EC5F9-DCBE-4597-86CE-DF8727F949D0"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.2:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF8B2847-0AFA-43A9-8662-6057F70A5FA5"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.2.3:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC37257E-020A-4437-BF7D-02F4D27987BC"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.3.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17DE0D71-F19A-4534-AB20-0D2B1A7D2F64"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.4.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DA89724-24A7-4D9B-82F2-F9C13C3905EE"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.4.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9E13374-632A-4596-8354-337530B0CD0F"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.5.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8348B0F4-64C4-403F-9003-EF8D8E8CA56A"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.5.1:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35816440-BC7D-4D92-9835-1F3E5E5E3909"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.6.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "998063B5-FEE7-410D-90CC-FC3F9DEB570C"}, {"criteria": "cpe:2.3:a:fenrir-inc:sleipnir_mobile:2.7.0:-:black:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E18848A-B966-4311-B6B0-E15C164A56F3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8255F035-04C8-4158-B301-82101711939C"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "vultures@jpcert.or.jp"}