« Handling Complex Scenarios with AppScan's Custom Parameters | Main | Enhancing Web Application Security Testing with IBM Security AppScan Glass Box »

May 03, 2012

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d835130c5153ef016304ed7bfe970d

Listed below are links to weblogs that reference Android SQLite Journal Information Disclosure (CVE-2011-3901):

Comments

Account Deleted

How's Android Security Team handled this? What actions they did?

Roee Hay

They've hardened the file permissions of the journal file (patch is available on AOSP).

YofBalibump

How did they get a Android emulator running a Android 2.3.7 version?
Thx

Roee Hay

Why wouldn't they be able to?

Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

Follow us on Twitter

AppScan Free Trial


Try IBM Security AppScan software at no charge.

Become a Fan