CVE-2014-7952
CVE-2014-7952
The backup mechanism in the adb tool in Android might allow attackers to inject additional applications (APKs) and execute arbitrary code by leveraging failure to filter application data streams.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/132645/ADB-Backup-APK-Injection.htmlhttp://seclists.org/fulldisclosure/2015/Jul/46https://github.com/irsl/ADB-Backup-APK-Injection/http://www.search-lab.hu/about-us/news/110-android-adb-backup-apk-injection-vulnerabilityhttp://www.securityfocus.com/archive/1/535980/100/0/threadedhttp://www.securityfocus.com/bid/75705