Release date:
Updated on: 2013-01-22
Affected Systems:
Google Monaca Debugger for Android <1.4.2
Description:
--------------------------------------------------------------------------------
Bugtraq id: 57453
CVE (CAN) ID: CVE-2012-5172
Monaca Debugger for Android is a client for debugging programs on the monaca platform of the Android system.
Earlier versions of Asial Monaca Debugger 1.4.2 for Android allow remote attackers to obtain the (1) account and (2) session ID information in the system log file through special applications.
<* Source: KuMaGa ShiRoIHi
Link: https://jvn.jp/en/jp/JVN56923652/index.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Google
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://play.google.com/store/apps/details? Id = mobi. monaca. debugger