Arbitrary Memory Read in Libxslt (CVE-2012-2825)

  CVE Identifier: CVE-2012-2825
  Advisory Date: JUL 21, 2015


This vulnerability assigned with CVE-2012-2825 is related to the Hacking Team leak, which exposed the RCSAndroid code. The said malicious code could potentially allow surveillance operations for cybercriminals. Based on our investigation, one of the methods that attackers used to lead users into downloading RCSAndroid is to send a specially crafted URL to the recipients/users via SMS or email.