Vulnerability Abstract

Title: Vulnerability in NetEase CloudAlbum (网易云相册) for Android
Time: 29 Feb 2012
Author: Daoyuan Wu*, Xiapu Luo* and Rocky K. C. Chang
Department of Computing, The Hong Kong Polytechnic University, Hong Kong
* authors with equal contributions
CVE ID: CVE-2012-1381
Category: Newly Confirmed
Related Vendor:, Inc.

Application Information

Archive Time: Feb 29, 2012 at 5:18 PM HKT
Package Name: com.netease.cloudalbum
Full Name: NetEase CloudAlbum ("网易云相册" in Chinese name)
Affected Version: Ver 2.0.0 Build1128 and Ver 2.2.0 Build0109 (the latest version in 29 Feb 2012)
Package Installs: 1,000 - 5,000
Market Link:

Vulnerability Details

Status: Details only release to related vendor.

Vendor Response

Contact Time: Feb 29, 2012 at 8:09 PM HKT
Confirm Time: Mar 1, 2012 at 6:42 PM HKT
Patched Time: Unknown
Patched Status: Unknown

Important Notes

Although we only mention one or several affected version in our report, other versions may also be vulnerable, e.g. lower version, pad version or paid version.

Related Vulnerabilities