CVE-2012-4013 Information

Description

The WebView class in the Cybozu KUNAI Browser for Remote Service application beta for Android allows remote attackers to execute arbitrary JavaScript code and obtain sensitive information via a crafted application that places this code into a local file associated with a file: URL.

Reference

http://jvn.jp/en/jp/JVN03015214/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000085 http://products.cybozu.co.jp/remote/product/smartphone/