CVE-2014-1670

medium

Microsoft

CVSS v3 Base Score

6.8

AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Score

29.2%

Exploitation probability in 30 days

Top 3% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Confidentiality

Integrity

Availability

Published: January 25, 2014 (4492 days ago)

Last Modified: April 29, 2026

Vendor: Microsoft

Source: NVD

Description

The Microsoft Bing application before 4.2.1 for Android allows remote attackers to install arbitrary APK files via vectors involving a crafted DNS response.

CWE

CWE-94

Affected Products

microsoft bing

References

🔗 blog.trustlook.com 🔗 osvdb.org 🔗 www.securityfocus.com 🔗 www.youtube.com 🔗 exchange.xforce.ibmcloud.com

CVE-2014-1670

Vulnerability Report

Description

CWE

Affected Products

References