The vulnerability of the readBytes function in the Android operating system, which allows a hacker to disclose protected information

The vulnerability of the readBytes function in the xltdecwbxml.c file of the Android operating system is caused by a numerical overflow. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially crafted request...

Google Android integer overflow vulnerability (CNVD-2019-01769)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An integer overflow vulnerability exists in readBytes in xltdecwbxml.c in Google Android. An attacker can exploit this vulnerability to cause an out-of-bounds read, which...

Integer overflow

In readBytes of xltdecwbxml.c, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID:...

CVE-2018-9565

CVE-2018-9565 affects Android 9 (Pie). The vulnerability is in readBytes of xltdecwbxml.c, caused by an integer overflow that can trigger an out-of-bounds read. This may enable remote information disclosure without extra execution privileges and without user interaction. Exploitation details are ...