CVE-2012-0326 Information

Description

The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges which allows remote attackers to read media files on an SD card via a crafted application.

Reference

http://jvn.jp/en/jp/JVN31860555/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000024 http://osvdb.org/80106 http://twicca.r246.jp/notice/ http://www.securityfocus.com/bid/52442 https://exchange.xforce.ibmcloud.com/vulnerabilities/73951 https://play.google.com/store/apps/details?id=jp.r246.twicca