Published: 07/10/2012 Updated: 07/11/2023

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The Zygote process in Android 4.0.3 and previous versions accepts fork requests from processes with arbitrary UIDs, which allows remote malicious users to cause a denial of service (reboot loop) via a crafted application.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google android 2.2.3
google android 2.0.1
google android 1.0
google android 3.2.6
google android 1.6
google android 2.1
google android 3.2.4
google android 3.2
google android 3.2.2
google android 4.0.2
google android 2.3
google android 2.3.6
google android 4.0.1
google android 2.3.3
google android 3.0
google android 2.0
google android 2.3.1
google android 2.3.5
google android 1.5
google android 3.1
google android 2.2.1
google android 2.2.2
google android 2.2
google android 2.3.4
google android 4.0
google android 2.3.7
google android 1.1
google android 2.3.2
google android 3.2.1
google android

################# BootReceiverjava ################## /** * Android Application that performs the fork bomb attack webnvdnistgov/view/vuln/detail?vulnId=CVE-2011-3918 * * Further informations can be found at wwwai-labit/bugAndroid/bugAndroidhtml * * * @author Luca Verderame <lucaverderame@unigeit> * @version 1 ...

Android Zygote socket vulnerability fork bomb attack exploit ...

CWE-399 http://www.ai-lab.it/merlo/publications/DoSAndroid.pdf https://code.google.com/p/android-source-browsing/source/detail?repo=platform--system--core&r=e7fd911fd42b https://nvd.nist.gov https://www.exploit-db.com/exploits/28957/

CVE-2011-3918

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect