CVE-2014-1909

CVE-2014-1909 is an integer signedness error in Android’s ADB implementation (system/core/adb/adb_client.c) affecting Android 4.4 with Platform Tools 18.0.1. Exploitation could allow an ADB server to execute arbitrary code via a negative length value that defeats a signed check and triggers a sta...

CVE-2012-5564

CVE-2012-5564 affects android-tools 4.1.1 in Android Debug Bridge (ADB). The vulnerability arises from a symlink attack on /tmp/adb.log that lets local, unauthenticated users overwrite arbitrary files; the NVD reports a LOCAL attack with MEDIUM complexity and partial integrity/availability impact...