Insecure Data Protection in Nimbuzz Android App Allows Contact List Manipulation

Insecure Data Protection in Nimbuzz Android App Allows Contact List Manipulation

CVE-2011-4702 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

The Nimbuzz (com.nimbuzz) application 2.0.8 and 2.0.10 for Android does not properly protect data, which allows remote attackers to read or modify a contact list via a crafted application.

Learn more about our Cis Benchmark Audit For Google Android.