Vulnerability in Dolphin Browser® Mini for Android

Vulnerability Abstract

Title:	Vulnerability in Dolphin Browser® Mini for Android
Time:	02 Mar 2012
Author:	Daoyuan Wu, Xiapu Luo and Rocky K. C. Chang
	Department of Computing, The Hong Kong Polytechnic University, Hong Kong
	* authors with equal contributions
CVE ID:	CVE-2012-1404
Category:	Newly Released
Related Vendor:	Dolphin Browser

Application Information

Archive Time:	Mar 2, 2012 at 2:15 PM HKT
Package Name:	com.dolphin.browser
Full Name:	Dolphin Browser® Mini
Affected Version:	2.2 (the latest version in 02 Mar 2012)
Package Installs:	1,000,000 - 5,000,000
Market Link:	https://market.android.com/details?id=com.dolphin.browser

Vulnerability Details

Status:	Details only release to related vendor.

Vendor Response

Contact Time:	Mar 2, 2012 at 8:47 PM HKT
Confirm Time:	Mar 2, 2012 at 10:00 PM HKT
Patched Time:	March 2, 2012
Patched Status:	Has patched the vulnerability in version 2.2.1.

Important Notes

Although we only mention one or several affected version in our report, other versions may also be vulnerable, e.g. lower version, pad version or paid version.

Related Vulnerabilities

Copyright © 2011-2012 AppSec All Rights Reserved.
Last updated: 01 Jun 2012