cve/CVE-2011-3874.md at 41fbf31e3d6076a9d40c80bb3e1e4187f08a58e2

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the FrameworkListener::dispatchCommand method with the wrong number of arguments, as demonstrated by zergRush to trigger a use-after-free error.

POC

Reference

No PoCs from references.

Github

https://github.com/ksparakis/apekit
https://github.com/tangsilian/android-vuln

827 B Raw Blame History

CVE-2011-3874

Description

POC

Reference

Github

827 B

Raw Blame History