http://seclists.org/fulldisclosure/2012/Feb/111
[0day-NO.0] android-webkit local cross-domain vulnerability
[0day-NO.1] android-webkit cross-protocol vulnerability
[0day-NO.2] android-webkit file:// protocol xss vulnerability
[0day-NO.3] android-browser/firefox auto download the file vulnerability
[0day-NO.4] webview.loadDataWithBaseURL() cross-protocol vulnerability
[0day-NO.5] com.htc.googlereader XSS vulnerability
[0day-NO.6] Some Browsers for android Cross-Application Scripting Vulnerability
2012/2/8か。
どんだけ対策されているんだろう。