« Handling Complex Scenarios with AppScan's Custom Parameters | Main | Enhancing Web Application Security Testing with IBM Security AppScan Glass Box »

May 03, 2012


TrackBack URL for this entry:

Listed below are links to weblogs that reference Android SQLite Journal Information Disclosure (CVE-2011-3901):


Account Deleted

How's Android Security Team handled this? What actions they did?

Roee Hay

They've hardened the file permissions of the journal file (patch is available on AOSP).


How did they get a Android emulator running a Android 2.3.7 version?

Roee Hay

Why wouldn't they be able to?

The comments to this entry are closed.

Follow us on Twitter

AppScan Free Trial

Try IBM Security AppScan software at no charge.

Become a Fan