Vulnerabilities > CVE-2012-6335 - Spoofing vulnerability in AVG AntiVirus for Android

CVSS 3.3 - LOW

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

low complexity

avg

NVD

Published: 2012-12-31

Updated: 2012-12-31

Summary

The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."

Vulnerable Configurations

Part	Description	Count
Application	Avg AVG AVG Antivirus -	1

Seebug

bulletinFamily	exploit
description	BUGTRAQ ID: 59318 CVE(CAN) ID: CVE-2012-6335 avast! Mobile Security for Android是移动杀毒和移动跟踪应用。 avast! Mobile Security for Android 2.0.3587及之前版本的Anti-theft服务存在本地拒绝服务漏洞，物理位置接近的本地攻击者可利用此漏洞通过通用的简单GPS位置欺骗程序提供任意位置数据，也可造成应用崩溃。 0 avast Mobile Security for Android 厂商补丁： avast ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： www.avast.com/free-mobile-security
id	SSV:60759
last seen	2017-11-19
modified	2013-04-24
published	2013-04-24
reporter	Root
title	avast! Mobile Security for Android 本地拒绝服务漏洞

References

http://thehackernews.com/2012/12/manufacture-based-gps-tracking-services.html