Android 4.0 through 4.3 allows attackers to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UNSPECIFIED option.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2013-12-14T20:00:00
Updated: 2013-12-14T19:57:00
Reserved: 2013-10-24T00:00:00
Link: CVE-2013-6271
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-12-14T20:55:03.673
Modified: 2013-12-18T14:42:31.733
Link: CVE-2013-6271
JSON object: View
Redhat Information
No data.
CWE