22 matches found
CVE-2025-43201
This issue was addressed with improved checks. This issue is fixed in Apple Music Classical 2.3 for Android. An app may be able to unexpectedly leak a user's credentials...
CVE-2012-4221
Integer overflow in diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses crafted arguments in a local diagcharioctl call...
CVE-2012-4222
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center QuIC Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service NULL pointer dereference via an application that uses crafted arguments in a local kgslioctl call...
launchAnyWhere: Activity Assembly permission bypass vulnerability analysis(Google Bug 7 6 9 9 0 4 8 )-vulnerability warning-the black bar safety net
Authors: Shin di Reprint please indicate the source http://blogs.360.cn/360mobile/2014/08/19/launchanywhere-google-bug-7699048/ A few days ago in the trial gitx this software happened to see Google fix a vulnerability, and recorded as a Google Bug 7 6 9 9 0 4 8 and. This is a AccountManagerServic...
Android LaunchAnyWhere (Google Bug 7 6 9 9 0 4 8)vulnerability explanation and Defense measures-vulnerability warning-the black bar safety net
Start Recently, Google repair a component of the security vulnerability LaunchAnyWhere Google Bug 7 6 9 9 0 4 8 in. This vulnerability belongs to the Intend Based extraction vulnerability, an attacker exploit this vulnerability, you can break the Inter-application permission isolation, reach to...
Android FTPServer 1.9.0 - Remote DoS
No description provided by source. Exploit Title: Android FTPServer 1.9.0 Remote DoS Date: 03/20/12 Author: G13 Twitter: @g13net Software Site: https://sites.google.com/site/andreasliebigapps/ftpserver/ Download Link: http://www.g13net.com/ftpserver.apk Version: 1.9.0 Category: DoS android...
Android Kernel 2.6 - Local DoS Crash PoC
No description provided by source. Exploit Title: Android Kernel 2.6 Local DoS Date: 12/7/12 Author: G13 Twitter: @g13net Versions: Android 2.2, 2.3 Category: DoS android Vulnerability The Android OS is vulnerable to a local DoS when a filename with a length of 2048 or larger is attempted to be...
Null pointer dereference
diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference via an application that uses crafted arguments in a local diagcharioctl...
CVE-2012-4222
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center QuIC Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service NULL pointer dereference via an application that uses crafted arguments in a local kgslioctl call...
Null pointer dereference
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center QuIC Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service NULL pointer dereference via an application that uses crafted arguments in a local kgslioctl call...
CVE-2012-4221
Integer overflow in diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses crafted arguments in a local diagcharioctl call...
CVE-2012-4220
diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference via an application that uses crafted arguments in a local diagcharioctl...
CVE-2012-4221
CVE-2012-4221 involves an integer overflow in the Qualcomm Innovation Center (QuIC) Diagnostics (DIAG) kernel-mode driver for Android 2.3–4.2, specifically in diagchar_core.c. An attacker could exploit crafted arguments via a local diagchar_ioctl call to achieve arbitrary code execution or cause ...
CVE-2012-4220
diagcharcore.c in the Qualcomm Innovation Center QuIC Diagnostics aka DIAG kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service incorrect pointer dereference via an application that uses crafted arguments in a local diagcharioctl...
Android FTPServer 1.9.0 Denial Of Service
Exploit Title: Android FTPServer 1.9.0 Remote DoS Date: 03/20/12 Author: G13 Twitter: @g13net Software Site: https://sites.google.com/site/andreasliebigapps/ftpserver/ Download Link: http://www.g13net.com/ftpserver.apk Version: 1.9.0 Category: DoS android Vulnerability FTPServer is vulnerable to ...
Android 2.3 信息泄露漏洞
CVE-2011-4276 Android是Google通过Open Handset Alliance发起的项目,用于为移动设备提供完整的软件集,包括操作系统、中间件等。 Android 2.3.6之前的2.3版本中的Bluetooth servicecom/android/phone/BluetoothHeadsetService.java中存在漏洞。远程攻击者可利用该漏洞借助AT电话簿转移,在蓝牙范围内获取联系人数据。 0 Android 2.3 目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:...
Stack overflow
Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the FrameworkListener::dispatchCommand method with the wrong number of arguments, as demonstrated by...
CVE-2011-3874
CVE-2011-3874 describes a use-after-free vulnerability in Android’s libsysutils, triggered via FrameworkListener::dispatchCommand when invoked with an incorrect number of arguments. Affected Android versions are 2.2.x–2.2.2 and 2.3.x–2.3.6. The issue was demonstrated by zergRush and, per sources,...
Design/Logic Flaw
The Bluetooth service com/android/phone/BluetoothHeadsetService.java in Android 2.3 before 2.3.6 allows remote attackers within Bluetooth range to obtain contact data via an AT phonebook transfer...
CVE-2011-4276
The Bluetooth service com/android/phone/BluetoothHeadsetService.java in Android 2.3 before 2.3.6 allows remote attackers within Bluetooth range to obtain contact data via an AT phonebook transfer...