CVE-2012-2645 Information

Description

The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for Android does not properly implement the WebView class which allows remote attackers to obtain sensitive information via a crafted application.

Reference

http://jvn.jp/en/jp/JVN46088915/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000070 http://secunia.com/advisories/49905 http://www.securityfocus.com/bid/54488 https://play.google.com/store/apps/details?id=jp.co.yahoo.android.ybrowser