Stack-based buffer overflow in libsysutils in Android 2.2.x up to and including 2.2.2 and 2.3.x up to and including 2.3.6 allows user-assisted remote malicious users to execute arbitrary code via an application that calls the FrameworkListener::dispatchCommand method with the wrong number of arguments, as demonstrated by zergRush to trigger a use-after-free error.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android 2.3 |
||
google android 2.3.6 |
||
google android 2.3.3 |
||
google android 2.3.1 |
||
google android 2.3.5 |
||
google android 2.2.1 |
||
google android 2.2.2 |
||
google android 2.2 |
||
google android 2.3.4 |
||
google android 2.3.2 |