The WebView class and use of the WebView.addJavascriptInterface method in the Boat Browser application 8.0 and 8.0.1 for Android allow remote attackers to execute arbitrary code via a crafted web site, a related issue to CVE-2012-6636.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4968
Reference (s):
- http://www.exploit-db.com/exploits/34088/