Arbitrary Memory Read in Libxslt (CVE-2012-2871)
Severity: LOW
CVE Identifier: CVE-2012-2871
Advisory Date: JUL 21, 2015
DESCRIPTION
This vulnerability is related to the Hacking Team leak, which exposed the RCSAndroid code. The said malicious code could potentially allow surveillance operations for cybercriminals. Based on our investigation, one of the methods that attackers used to lead users into downloading RCSAndroid is to send a specially crafted URL to the recipients/users via SMS or email.