CVE-2010-4804: CVE-2010-4804

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-4804

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Android browser in Android before 2.3.4 allows remote attackers to obtain SD card contents via crafted content:// URIs, related to (1) BrowserActivity.java and (2) BrowserSettings.java in com/android/browser/.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Android浏览器信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。 Android 2.3.4之前版本的Android浏览器中存在信息泄露漏洞。该漏洞是由于com/android/browser/下的BrowserActivity.java和BrowserSettings.java中的错误导致的，远程攻击者可以借助特制的content:// URI获取SD卡内容。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-4804

#	POC Description	Source Link	Shenlong Link
1	Android Data Stealing Vulnerability	https://github.com/thomascannon/android-cve-2010-4804	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-4804

Please Login to view more intelligence information

http://thomascannon.net/blog/2010/11/android-data-stealing-vulnerability/x_refsource_MISC
http://www.csc.ncsu.edu/faculty/jiang/nexuss.htmlx_refsource_MISC
http://android.git.kernel.org/?p=platform/packages/apps/Browser.git%3Ba=commit%3Bh=604a598e1e01bda781600a45e0a971898a582666x_refsource_CONFIRM
http://www.slashgear.com/android-data-theft-exploit-to-be-plugged-in-gingerbread-video-24116054/x_refsource_MISC
http://android.git.kernel.org/?p=platform/frameworks/base.git%3Ba=commit%3Bh=f440831d76817e837164ca18c7705e81d2391f87x_refsource_CONFIRM
http://www.securityfocus.com/bid/48256vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2010-4804

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-4804

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2010-4804

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-4804

III. Intelligence Information for CVE-2010-4804

IV. Related Vulnerabilities

V. Comments for CVE-2010-4804

Leave a comment