Vulnerability Note VU#709806
TrustGo Antivirus & Mobile Security contains a denial-of-service vulnerability
TrustGo Antivirus & Mobile Security versions 1.2.7 through 1.3.5 contain a denial-of-service (CWE-20) vulnerability.
CWE-20: Improper Input Validation - CVE-2013-3580
TrustGo Antivirus & Mobile Security versions 1.2.7 through 1.3.5 crash if an intent is sent to com.trustgo.mobile.security.USSDScannerActivity with no arguments.
A malicious application installed on the phone may be able to disable the TrustGo Antivirus & Mobile Security software.
Apply an Update
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|TrustGo||Affected||28 Jun 2013||26 Jul 2013|
CVSS Metrics (Learn More)
Thanks to china.x.orion for reporting this vulnerability.
This document was written by Adam Rauf.
- CVE IDs: CVE-2013-3580
- Date Public: 26 Jul 2013
- Date First Published: 26 Jul 2013
- Date Last Updated: 29 Jul 2013
- Document Revision: 24
If you have feedback, comments, or additional information about this vulnerability, please send us email.