Information from Newphoria Corporation

[Summary]
A vulnerability in access restriction of AI黒白棋 has been found.

[Affected applications]
iOS AI黒白棋 up to version 1.1, Android up to version 1.0.2

[Detailed information]
AI黒白棋 could be loaded using URL scheme with the possibility to open an arbitrary page.

[Supposed effect]
A possibility to falsify a file which can be accessed to by an application by the malicious third party.

[Resolution method]
Android
Update to version 1.0.3 from GooglePlay.

iOS
Update to version 1.2 from AppStore.


[Acknowledgements]
This vulnerability report was sent according to Information Security Early Warning partnership within regulation between our company and IPA with JPCERT/CC.
The information regarding the vulnerability was reported to us by Sprout Inc.
Our special thanks to Kenta Suefusa and Tomonori Shiomi of Sprout Inc., and also to anyone involved into Information Security Early Warning partnership.