CVE-2011-2357
published 2011-08-12CVE-2011-2357: Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 and 3.1 allows local applications to bypass the sandbox and…
PriorityP427medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
4.61%
90.5th percentile
Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 and 3.1 allows local applications to bypass the sandbox and execute arbitrary Javascript in arbitrary domains by (1) causing the MAX_TAB number of tabs to be opened, then loading a URI to the targeted domain into the current tab, or (2) making two startActivity function calls beginning with the targeted domain's URI followed by the malicious Javascript while the UI focus is still associated with the targeted domain.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://android.git.kernel.org/?p=platform/cts.git%3Ba=commit%3Bh=7e48fb87d48d27e65942b53b7918288c8d740e17http://android.git.kernel.org/?p=platform/packages/apps/Browser.git%3B%20a=commit%3Bh=096bae248453abe83cbb2e5a2c744bd62cdb620bhttp://android.git.kernel.org/?p=platform/packages/apps/Browser.git%3B%20a=commit%3Bh=afa4ab1e4c1d645e34bd408ce04cadfd2e5dae1ehttp://blog.watchfire.com/files/advisory-android-browser.pdfhttp://blog.watchfire.com/wfblog/2011/08/android-browser-cross-application-scripting-cve-2011-2357.htmlhttp://osvdb.org/74260http://seclists.org/fulldisclosure/2011/Aug/9http://secunia.com/advisories/45457http://securityreason.com/securityalert/8335http://securitytracker.com/id?1025881http://www.infsec.cs.uni-saarland.de/projects/android-vuln/http://www.infsec.cs.uni-saarland.de/projects/android-vuln/android_xss.pdfhttp://www.securityfocus.com/archive/1/519146/100/0/threadedhttp://www.securityfocus.com/bid/48954https://exchange.xforce.ibmcloud.com/vulnerabilities/68937http://android.git.kernel.org/?p=platform/cts.git%3Ba=commit%3Bh=7e48fb87d48d27e65942b53b7918288c8d740e17http://android.git.kernel.org/?p=platform/packages/apps/Browser.git%3B%20a=commit%3Bh=096bae248453abe83cbb2e5a2c744bd62cdb620bhttp://android.git.kernel.org/?p=platform/packages/apps/Browser.git%3B%20a=commit%3Bh=afa4ab1e4c1d645e34bd408ce04cadfd2e5dae1ehttp://blog.watchfire.com/files/advisory-android-browser.pdfhttp://blog.watchfire.com/wfblog/2011/08/android-browser-cross-application-scripting-cve-2011-2357.htmlhttp://osvdb.org/74260http://seclists.org/fulldisclosure/2011/Aug/9http://secunia.com/advisories/45457http://securityreason.com/securityalert/8335http://securitytracker.com/id?1025881http://www.infsec.cs.uni-saarland.de/projects/android-vuln/http://www.infsec.cs.uni-saarland.de/projects/android-vuln/android_xss.pdfhttp://www.securityfocus.com/archive/1/519146/100/0/threadedhttp://www.securityfocus.com/bid/48954https://exchange.xforce.ibmcloud.com/vulnerabilities/68937
2011-08-12
Published