CVE-2014-7952
CVE-2014-7952
The backup mechanism in the adb tool in Android might allow attackers to inject additional applications (APKs) and execute arbitrary code by leveraging failure to filter application data streams.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://packetstormsecurity.com/files/132645/ADB-Backup-APK-Injection.htmlhttp://seclists.org/fulldisclosure/2015/Jul/46https://github.com/irsl/ADB-Backup-APK-Injection/http://www.search-lab.hu/about-us/news/110-android-adb-backup-apk-injection-vulnerabilityhttp://www.securityfocus.com/archive/1/535980/100/0/threadedhttp://www.securityfocus.com/bid/75705