Refine your search
6 vulnerabilities found for Sleipnir Mobile by Fenrir Inc.
jvndb-2014-000007
Vulnerability from jvndb
Published
2014-01-22 15:29
Modified
2014-01-27 09:47
Summary
Information disclosure vulnerability in Sleipnir Mobile for Android
Details
Sleipnir Mobile for Android contains an issue in handling Geolocation API, which may result in the disclosure of a user's location.
Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an issue in handling Geolocation API, which may result in the disclosure of a user's location.
Ryoji Tamura reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000007.html",
"dc:date": "2014-01-27T09:47+09:00",
"dcterms:issued": "2014-01-22T15:29+09:00",
"dcterms:modified": "2014-01-27T09:47+09:00",
"description": "Sleipnir Mobile for Android contains an issue in handling Geolocation API, which may result in the disclosure of a user\u0027s location.\r\n\r\nSleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an issue in handling Geolocation API, which may result in the disclosure of a user\u0027s location.\r\n\r\nRyoji Tamura reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000007.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-000007",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN81637882/index.html",
"@id": "JVN#81637882",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0806",
"@id": "CVE-2014-0806",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0806",
"@id": "CVE-2014-0806",
"@source": "NVD"
},
{
"#text": "http://www.w3.org/TR/geolocation-API/#privacy_for_uas",
"@id": "W3C - Geolocation API Specification",
"@source": "Related Information"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Information disclosure vulnerability in Sleipnir Mobile for Android"
}
jvndb-2013-000046
Vulnerability from jvndb
Published
2013-05-29 15:19
Modified
2013-05-29 15:19
Summary
Sleipnir Mobile for Android vulnerable to address bar spoofing
Details
Sleipnir Mobile for Android contains an issue when opening a new window, which may result in the address bar being spoofed.
Keita Haga of keitahaga.com reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000046.html",
"dc:date": "2013-05-29T15:19+09:00",
"dcterms:issued": "2013-05-29T15:19+09:00",
"dcterms:modified": "2013-05-29T15:19+09:00",
"description": "Sleipnir Mobile for Android contains an issue when opening a new window, which may result in the address bar being spoofed.\r\n\r\nKeita Haga of keitahaga.com reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000046.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-000046",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN22756333/index.html",
"@id": "JVN#22756333",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2317",
"@id": "CVE-2013-2317",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2317",
"@id": "CVE-2013-2317",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Sleipnir Mobile for Android vulnerable to address bar spoofing"
}
jvndb-2013-000033
Vulnerability from jvndb
Published
2013-04-12 12:41
Modified
2013-04-12 12:41
Summary
Sleipnir Mobile for Android loads arbitrary Extension API
Details
Sleipnir Mobile for Android has an Extension mechanism to customize browser functions, and this Extension function makes calls to an Extension API.
Sleipnir Mobile for Android contains an issue that may allow a specially crafted web page to load an arbitrary Extension API.
Keita Haga of keitahaga.com reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000033.html",
"dc:date": "2013-04-12T12:41+09:00",
"dcterms:issued": "2013-04-12T12:41+09:00",
"dcterms:modified": "2013-04-12T12:41+09:00",
"description": "Sleipnir Mobile for Android has an Extension mechanism to customize browser functions, and this Extension function makes calls to an Extension API.\r\nSleipnir Mobile for Android contains an issue that may allow a specially crafted web page to load an arbitrary Extension API.\r\n\r\nKeita Haga of keitahaga.com reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000033.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2013-000033",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN02895867/index.html",
"@id": "JVN#02895867",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2304",
"@id": "CVE-2013-2304",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2304",
"@id": "CVE-2013-2304",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-264",
"@title": "Permissions(CWE-264)"
}
],
"title": "Sleipnir Mobile for Android loads arbitrary Extension API"
}
jvndb-2012-000076
Vulnerability from jvndb
Published
2012-08-08 14:43
Modified
2012-08-08 14:43
Summary
Sleipnir Mobile for Android vulnerable to arbitrary script execution
Details
Sleipnir Mobile for Android contains an arbitrary script execution vulnerability.
Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary script execution vulnerability.
Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000076.html",
"dc:date": "2012-08-08T14:43+09:00",
"dcterms:issued": "2012-08-08T14:43+09:00",
"dcterms:modified": "2012-08-08T14:43+09:00",
"description": "Sleipnir Mobile for Android contains an arbitrary script execution vulnerability.\r\n\r\nSleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary script execution vulnerability.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000076.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000076",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN39519659/index.html",
"@id": "JVN#39519659",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4004",
"@id": "CVE-2012-4004",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4004",
"@id": "CVE-2012-4004",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Sleipnir Mobile for Android vulnerable to arbitrary script execution"
}
jvndb-2012-000075
Vulnerability from jvndb
Published
2012-08-08 14:39
Modified
2012-08-08 14:39
Summary
Sleipnir Mobile for Android vulnerable to arbitrary Java method execution
Details
Sleipnir Mobile for Android contains an arbitrary Java method execution vulnerability.
Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary Java method execution vulnerability.
Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000075.html",
"dc:date": "2012-08-08T14:39+09:00",
"dcterms:issued": "2012-08-08T14:39+09:00",
"dcterms:modified": "2012-08-08T14:39+09:00",
"description": "Sleipnir Mobile for Android contains an arbitrary Java method execution vulnerability.\r\n\r\nSleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains an arbitrary Java method execution vulnerability.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000075.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000075",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN99730704/index.html",
"@id": "JVN#99730704",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2649",
"@id": "CVE-2012-2649",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2649",
"@id": "CVE-2012-2649",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-DesignError",
"@title": "No Mapping(CWE-DesignError)"
}
],
"title": "Sleipnir Mobile for Android vulnerable to arbitrary Java method execution"
}
jvndb-2012-000071
Vulnerability from jvndb
Published
2012-07-24 14:05
Modified
2012-07-24 14:05
Summary
Sleipnir Mobile for Android vulnerable in the WebView class
Details
Sleipnir Mobile for Android contains a vulnerability in the WebView class.
Sleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains a vulnerability in the WebView class.
Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000071.html",
"dc:date": "2012-07-24T14:05+09:00",
"dcterms:issued": "2012-07-24T14:05+09:00",
"dcterms:modified": "2012-07-24T14:05+09:00",
"description": "Sleipnir Mobile for Android contains a vulnerability in the WebView class.\r\n\r\nSleipnir Mobile for Android is a web browser for Android devices. Sleipnir Mobile for Android contains a vulnerability in the WebView class.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000071.html",
"sec:cpe": {
"#text": "cpe:/a:fenrir-inc:sleipnir_mobile",
"@product": "Sleipnir Mobile",
"@vendor": "Fenrir Inc.",
"@version": "2.2"
},
"sec:cvss": {
"@score": "2.6",
"@severity": "Low",
"@type": "Base",
"@vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-000071",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN88643450/index.html",
"@id": "JVN#88643450",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2646",
"@id": "CVE-2012-2646",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2646",
"@id": "CVE-2012-2646",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Sleipnir Mobile for Android vulnerable in the WebView class"
}