| Vulnerability Name: | CVE-2011-2344 (CCN-68500) | ||||||||
| Assigned: | 2011-05-18 | ||||||||
| Published: | 2011-05-18 | ||||||||
| Updated: | 2011-07-08 | ||||||||
| Summary: | Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and access private pictures and web albums by sniffing the token from connections with picasaweb.google.com. | ||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C) 7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-310 | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: Android GIT Repository gitprojects / platform/packages/apps/Gallery3D.git / Source: CONFIRM Type: Patch http://android.git.kernel.org/?p=platform/packages/apps/Gallery3D.git;a=commit;h=7a763db1c15bb6436be85a3f23382e4171970b6e Source: CONFIRM Type: Patch http://android.git.kernel.org/?p=platform/packages/apps/Gallery3D.git;a=commit;h=9a418de454e5ce078c98f41b5c18e3bb9175bd20 Source: CCN Type: Google Android Web site Android Source: MITRE Type: CNA CVE-2011-2344 Source: CCN Type: OSVDB ID: 74320 Android Picasa Cleartext HTTP Session ClientLogin authToken Remote Privilege Escalation Source: MISC Type: Patch http://www.uni-ulm.de/en/in/mi/staff/koenings/catching-authtokens.html Source: XF Type: UNKNOWN android-picasa-priv-escalation(68500) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||