Vulnerabilities > CVE-2010-0113 - Credentials Management vulnerability in Symantec Mobile Security 1.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE

Summary

The Symantec Norton Mobile Security application 1.0 Beta for Android records setup details, possibly including wipe/lock credentials, in the device logs, which allows user-assisted remote attackers to obtain potentially sensitive information by leveraging the ability of a separate crafted application to read these logs.

Vulnerable Configurations

Part Description Count
Application
Symantec
1
OS
Google
1

Common Weakness Enumeration (CWE)