NVD

Id
11202  
Name
CVE-2011-4872  
Description
Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI40, and EVO 4G GRI40 allow remote attackers to obtain 802.1X Wi-Fi credentials and SSID via a crafted application that uses the android.permission.ACCESS_WIFI_STATE permission to call the toString method on the WifiConfiguration class.  
Reject
 
CVSS Version
2  
CVSS Score
2.6  
Severity
Low  
CVSS Base Score
2.6  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2012-02-05  
Modified Date
2012-02-16  
Seq
2011-4872  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
62011 11202 CVE-2011-4872 20120201 802.1X password exploit on many HTC Android devices  View
62012 11202 CVE-2011-4872 http://blog.mywarwithentropy.com/2012/02/8021x-password-exploit-on-many-htc.html  View
62013 11202 CVE-2011-4872 VU#763355  View
62014 11202 CVE-2011-4872 51790  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
25601 JVNDB-2012-001308 HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性 HTC 製 Android 端末には、Wi-Fi の認証情報が漏えいする脆弱性が存在します。 CVE-2011-4872 52779 CVE-2011-4872 11202 2.6 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001308.html 2012-02-02 2012-02-07 View