Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30996
HistoryAug 11, 2014 - 12:00 a.m.

(CVE-2014-3501/2/3) Apache Cordova for Android - Multiple Vulnerabilities

2014-08-1100:00:00
vulners.com
42
JSON

Hi,

We have recently discovered a severe Cross-Application Scripting (XAS) vulnerability in Apache Cordova for Android. This vulnerability enables theft of sensitive information from Crodova-based apps both locally by malware and also remotely by using drive-by exploitation techniques.

In addition, we have also found a set of vulnerabilities which allow for data exfiltration to an arbitrary target, bypassing Cordova's whitelisting mechanism.

The CVE identifiers are:

CVE-2014-3500: Cross-Application Scripting via Android Intents
CVE-2014-3501: Cordova whitelist bypass for non-HTTP URLs
CVE-2014-3502: Data Leak to Other Applications via Android Intent URIs

We had privately reported the issues to Cordova and CVE-2014-3100 has been fixed in Cordova 3.5.1. See our whitepaper for details on how to mitigate CVE-2014-3501 and CVE-2014-3502.

More details (including a video demo of a working exploit) are available at:

  1. Blog: http://securityintelligence.com/apache-cordova-phonegap-vulnerability-android-banking-apps/
  2. Advisory: https://www.slideshare.net/ibmsecurity/remote-exploitation-of-the-cordova-framework/
  • Roee Hay & David Kaplan

Related

securityvulns 4
ibm 3
prion 4
cve 4
android 1
nessus 1
securityvulns
securityvulns
Apache Cordova multiple security vulnerabilities
2014-08-11 00:00:00
Apache Cordova 3.5.1: CVE-2014-3502 update
2014-08-26 00:00:00
Android KeyStore Stack Buffer Overflow (CVE-2014-3100)
2014-10-14 00:00:00
ibm
ibm
Security Bulletin: IBM Mobile Foundation, IBM Worklight, and IBM Worklight Foundation are affected by the following Apache Cordova vulnerabilities: CVE-2014-3500, CVE-2014-3501 and CVE-2014-3502
2018-06-17 22:31:19
Security Bulletin: Multiple vulnerabilities affecting the Cordova platform packaged with Rational Application Developer (CVE-2014-3500, CVE-2014-3501 and CVE-2014-3502)
2020-02-05 00:09:48
Security Bulletin: Multiple vulnerabilities affecting the Cordova platform and IBM SDK Node.js packaged with Rational Software Architect and Rational Software Architect for WebSphere Software
2020-09-10 15:43:59
prion
prion
Information disclosure
2014-11-15 21:59:00
Design/Logic Flaw
2014-11-15 21:59:00
Stack overflow
2014-07-02 04:14:00
cve
cve
CVE-2014-3502
2014-11-15 21:59:00
CVE-2014-3501
2014-11-15 21:59:00
CVE-2014-3100
2014-07-02 04:14:00
android
android
keystore buffer
2014-06-23 00:00:00
nessus
nessus
IBM WebSphere Portal 8.5.0 < 8.5.0 CF03 Multiple Vulnerabilities
2014-10-30 00:00:00
JSON
Related for SECURITYVULNS:DOC:30996
securityvulns4ibm3prion4cve4android1nessus1