The backup mechanism in the adb tool in Android might allow attackers to inject additional applications (APKs) and execute arbitrary code by leveraging failure to filter application data streams.
packetstormsecurity.com/files/132645/ADB-Backup-APK-Injection.html
seclists.org/fulldisclosure/2015/Jul/46
www.search-lab.hu/about-us/news/110-android-adb-backup-apk-injection-vulnerability
www.securityfocus.com/archive/1/535980/100/0/threaded
www.securityfocus.com/bid/75705
github.com/irsl/ADB-Backup-APK-Injection/