Vulnerabilities in the Android operating system that allow a hacker to trigger a service failure

Multiple vulnerabilities in the addVorbisCodecInfo function of the libstagefright library in the Android operating system are related to integer overflow. Exploiting these vulnerabilities could allow a malicious actor to cause service failures by using specially crafted Matroska-formatted data...

Vulnerabilities of the Android operating system that allow a hacker to escalate their privileges or cause service failures

The numerous vulnerabilities of the Android operating system are related to integer overflows. Exploiting these vulnerabilities can allow attackers to enhance their privileges or cause service failures by sending large amounts of file descriptors or integer values...

Google Won't Patch WebView Prior to Android Jelly Bean

Hackers may have a perpetual shooting gallery of unpatched Android vulnerabilities at their disposal after it was disclosed today that Google no longer will provide WebView patches for older versions of its operating system. Researchers at Rapid7 have made mincemeat of WebView in Android Jelly...

Google Chrome for Android < 36.0.1985.122 Multiple Vulnerabilities

Binary data 8341.prm...

GoToMeeting for Android多个本地信息泄露漏洞

BUGTRAQ ID: 65123 CVECAN ID: CVE-2014-1664 GoToMeeting是在线会议解决方案。 Citrix GoToMeeting for Android（版本5.0.799.1238）记录HTTP请求中包含了敏感信息，这可使远程攻击者通过可以读取系统日志文件的应用，利用此漏洞获取用户ID、会议细节、身份验证令牌等。 0 Citrix Online GoToMeeting for Android 5.0.799.1238 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Mercury v1.0 - Framework for bug hunters to find Android vulnerabilities

Mercury v1.0 - Framework for bug hunters to find Android vulnerabilities A free framework for bug hunters to find vulnerabilities, write proof-of-concept exploits and play in Android. Use dynamic analysis on Android applications and devices for quicker security assessments. Share publicly known...

Offensive Research Continuing to Advance

MIAMI BEACH–It’s the accepted wisdom these days that many of the traditional security defenses organizations depend on just aren’t effective at deterring attackers. But this glosses over the fact that the last few years have included some major advances in defensive technologies, including the...

HTC Working on a Fix for Data Leak Problem

Officials at mobile handset maker HTC said they are working on a patch to fix a problem with many of its Android devices that enables any app with Internet permissions to access a large cache of user and device data that a proprietary tool called HTCLoggers collects. The company said on Monday th...

More Android vulnerabilities exposed [Video Demonstration]

More Android vulnerabilities exposed Video Demonstration It's been more than a month since researchers reported two serious security vulnerabilities in Android, but so far there's no indication when they will be purged from the Google-spawned operating system that's the world's most popular...

Threats Go Mobile

Smartphone adoption has exploded in recent years, and this has not been lost on the attackers who are looking for the best way to separate users from their money and confidential data. There were several examples of attackers sneaking malicious applications into mobile app stores, some disguised ...