{"vuid":"VU#131263","idnumber":"131263","name":"avast! Mobile Security Android application denial-of-service vulnerability","keywords":["avast!","mobile","security","android","dos","intent"],"overview":"avast! Mobile Security Android application version 2.0.3587, and possibly earlier versions, contains a denial-of-service vulnerability.","clean_desc":"avast! Mobile Security (version 2.0.3587) crashes if an Intent is sent to com.avast.android.mobilesecurity.app.scanner.DeleteFileActivity with no arguments. Upon receiving the malformed intent the application will crash with the following message. “Unfortunately, avast! Mobile Security has stopped.” The logcat log contains a message confirming that the application has crashed. “I/ActivityManager(  175): Process com.avast.android.mobilesecurity (pid 6596) has died.” This results in a malicious application being able to disable the avast! Mobile Security software.","impact":"A malicious application installed on the phone may be able to disable the avast! Mobile Security software.","resolution":"Apply an Update Upgrade to avast! Mobile Security version 2.0.4400 or later to address this vulnerability.","workarounds":"","sysaffected":"","thanks":"Thanks to Kurt Traver for reporting this vulnerability.","author":"This document was written by Jared Allar.","public":["h","t","t","p","s",":","/","/","p","l","a","y",".","g","o","o","g","l","e",".","c","o","m","/","s","t","o","r","e","/","a","p","p","s","/","d","e","t","a","i","l","s","?","i","d","=","c","o","m",".","a","v","a","s","t",".","a","n","d","r","o","i","d",".","m","o","b","i","l","e","s","e","c","u","r","i","t","y"],"cveids":["CVE-2013-0122"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2013-03-07T20:39:00Z","publicdate":"2013-04-19T00:00:00Z","datefirstpublished":"2013-04-19T19:11:35Z","dateupdated":"2013-04-19T19:11:37Z","revision":14,"vrda_d1_directreport":"1","vrda_d1_population":"2","vrda_d1_impact":"2","cam_widelyknown":"0","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"0","cam_impact":"0","cam_easeofexploitation":"0","cam_attackeraccessrequired":"0","cam_scorecurrent":"0","cam_scorecurrentwidelyknown":"0","cam_scorecurrentwidelyknownexploited":"0","ipprotocol":"","cvss_accessvector":"L","cvss_accesscomplexity":"H","cvss_authentication":null,"cvss_confidentialityimpact":"N","cvss_integrityimpact":"N","cvss_availabilityimpact":"C","cvss_exploitablity":null,"cvss_remediationlevel":"OF","cvss_reportconfidence":"C","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"M","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"3.8","cvss_basevector":"AV:L/AC:H/Au:S/C:N/I:N/A:C","cvss_temporalscore":"3","cvss_environmentalscore":"2.3","cvss_environmentalvector":"CDP:ND/TD:M/CR:ND/IR:ND/AR:ND","metric":0.0,"vulnote":null}