SD Card Content Disclosure Vulnerability in Android Browser

CVE-2010-4804 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The Android browser in Android before 2.3.4 allows remote attackers to obtain SD card contents via crafted content:// URIs, related to (1) BrowserActivity.java and (2) BrowserSettings.java in com/android/browser/.

Learn more about our Cis Benchmark Audit For Google Android.