*# Date of Discovery:* 12/02/2014
*# Author: *Keith Makan
*# Vendor or Software Link:*
org.openintents.filemanager<https://play.google.com/store/apps/details?id=org.openintents.filemanager>

*# Version:* 2.0.5
*# Tested on:* Android 3.2.1 (HTC Flyer)
*# Tools :* Drozer, Bash

Description

IO File Manager (version 2.0.5) for Android suffers from a Path traversal
vulnerability.  The vulnerability stems from inadequate protection of the
org.openintents.filemanager.FileManager Content Provider and associated
URIs.
Impact
This vulnerability allows unauthorized applications to abuse the external
storage related permission granted to this application and leak information
about any world readable files on the files system without being granted
the relevant permissions.

Currently an estimated 5,000,000 - 10,000,000 installs are affected.
Poc

File disclosure --> http://i.imgur.com/zPVwh8r.png

Original Advisory -->
http://blog.k3170makan.com/2014/02/path-disclosure-vulnerability-in-io.html
-- 
<Keith k3170makan <http://about.me/k3170makan> Makan/>