CVE-2014-1978

Published: Mar 19, 2014Modified: May 6, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

The application link interface in the NTT DOCOMO sp mode mail application 6100 through 6300 for Android 4.0.x and 6130 through 6700 for Android 4.1 through 4.4 writes message content to the SD card during e-mail composition, which allows attackers to obtain sensitive information via a crafted application.

Affected (4)

Products: Nttdocomo: Spmode Mail Android

Nttdocomo

1 product

Spmode Mail Android

Configuration A

2 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Nttdocomo Spmode Mail Android	Version 6100
Nttdocomo Spmode Mail Android	Version 6300

Running on/with	Platform Versions
Google Android	Version 4.0.1
Google Android	Version 4.0.2
Google Android	Version 4.0.3
Google Android	Version 4.0.4
Google Android	Version 4.0

Configuration B

2 vulnerable · 8 platform

Vulnerable Software	Affected Versions
Nttdocomo Spmode Mail Android	Version 6130
Nttdocomo Spmode Mail Android	Version 6700

Running on/with	Platform Versions
Google Android	Version 4.1.2
Google Android	Version 4.1
Google Android	Version 4.2.1
Google Android	Version 4.2.2
Google Android	Version 4.2
Google Android	Version 4.3.1
Google Android	Version 4.3
Google Android	Version 4.4

Related CWEs

CWE-264

References (4)

http://jvn.jp/en/jp/JVN05951929/index.html

Source: vultures@jpcert.or.jp

http://jvndb.jvn.jp/jvndb/JVNDB-2014-000028

Source: vultures@jpcert.or.jp

http://jvn.jp/en/jp/JVN05951929/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://jvndb.jvn.jp/jvndb/JVNDB-2014-000028

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.