IO File Manager version 2.0.5 suffers from a path traversal vulnerability.
0cfee755a5b538954bca4d085dca80c9d4c553ed657879443b0b2b5db33e2aa0
*# Date of Discovery:* 12/02/2014
*# Author: *Keith Makan
*# Vendor or Software Link:*
org.openintents.filemanager<https://play.google.com/store/apps/details?id=org.openintents.filemanager>
*# Version:* 2.0.5
*# Tested on:* Android 3.2.1 (HTC Flyer)
*# Tools :* Drozer, Bash
Description
IO File Manager (version 2.0.5) for Android suffers from a Path traversal
vulnerability. The vulnerability stems from inadequate protection of the
org.openintents.filemanager.FileManager Content Provider and associated
URIs.
Impact
This vulnerability allows unauthorized applications to abuse the external
storage related permission granted to this application and leak information
about any world readable files on the files system without being granted
the relevant permissions.
Currently an estimated 5,000,000 - 10,000,000 installs are affected.
Poc
File disclosure --> http://i.imgur.com/zPVwh8r.png
Original Advisory -->
http://blog.k3170makan.com/2014/02/path-disclosure-vulnerability-in-io.html
--
<Keith k3170makan <http://about.me/k3170makan> Makan/>