Arbitrary Memory Read in Libxslt (CVE-2012-2871)
Publish Date: 14 de августа de 2015
Severity: : Low
CVE Kennungen: : CVE-2012-2871
Advisory Date: 21 de июля de 2015
DESCRIPTION
This vulnerability is related to the Hacking Team leak, which exposed the RCSAndroid code. The said malicious code could potentially allow surveillance operations for cybercriminals. Based on our investigation, one of the methods that attackers used to lead users into downloading RCSAndroid is to send a specially crafted URL to the recipients/users via SMS or email.