Arbitrary Memory Read in Libxslt (CVE-2012-2871)

  Severity: LOW
  CVE Identifier: CVE-2012-2871
  Advisory Date: JUL 21, 2015

  DESCRIPTION

This vulnerability is related to the Hacking Team leak, which exposed the RCSAndroid code. The said malicious code could potentially allow surveillance operations for cybercriminals. Based on our investigation, one of the methods that attackers used to lead users into downloading RCSAndroid is to send a specially crafted URL to the recipients/users via SMS or email.