Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HTC设备安全限制绕过漏洞
Vulnerability Description
HTC是一家全球手机创新与设计企业,名为宏达国际电子股份有限公司。 基于HTC EVO 4G 4.67.651.3之前版本,EVO Design 4G 2.12.651.5之前版本, Shift 4G 2.77.651.3之前版本, EVO 3D 2.17.651.5之前版本, EVO View 4G 2.23.651.1之前版本, Vivid 3.26.502.56之前版本以及Hero的Android的HTC IQRD服务中存在漏洞,该漏洞源于未正确限制TCP端口2479的本地主机访问。远程攻击者可利用
CVSS Information
N/A
Vulnerability Type
N/A