Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    1 vulnerability by Tetsuya Aoyama

    JVNDB-2012-000024

    Vulnerability from jvndb - Published: 2012-03-13 13:36 - Updated:2012-03-13 13:36
    Severity
    N/A (UNKNOWN) - -
    Summary
    twicca fails to restrict access permissions
    Details
    twicca contains an issue where access permissions are not restricted. twicca is a client software for using Twitter. twicca contains an issue where access permissions are not restricted. Kazuhiko Kusano of Graduate School of Information Sciences, Tohoku University reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    References
    Impacted products
    Show details on JVN DB website
    To clipboard 

    {
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000024.html",
  "dc:date": "2012-03-13T13:36+09:00",
  "dcterms:issued": "2012-03-13T13:36+09:00",
  "dcterms:modified": "2012-03-13T13:36+09:00",
  "description": "twicca contains an issue where access permissions are not restricted.\r\n\r\ntwicca is a client software for using Twitter. twicca contains an issue where access permissions are not restricted.\r\n\r\nKazuhiko Kusano of Graduate School of Information Sciences, Tohoku University reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000024.html",
  "sec:cpe": {
    "#text": "cpe:/a:tetsuya_aoyama:twicca",
    "@product": "twicca",
    "@vendor": "Tetsuya Aoyama",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "2.6",
    "@severity": "Low",
    "@type": "Base",
    "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2012-000024",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN31860555/index.html",
      "@id": "JVN#31860555",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0326",
      "@id": "CVE-2012-0326",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0326",
      "@id": "CVE-2012-0326",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-264",
      "@title": "Permissions(CWE-264)"
    }
  ],
  "title": "twicca fails to restrict access permissions"
}