Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
dexdump in Android SDK before 2.3 does not properly perform structural verification, which allows user-assisted remote attackers to cause a denial of service (dexdump crash) and possibly execute arbitrary code via a malformed APK or dex file that calls a method using more arguments than the number of register that have been declared for that method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android SDK dexdump输入验证漏洞
Vulnerability Description
Android SDK是Android专属的软件开发工具包。 Android SDK 2.3之前版本中的dexdump不能正确执行结构验证。远程攻击者可借助畸形的APK或dex文件导致拒绝服务(dexdump崩溃)并很可能执行任意代码,该文件调用了一种使用超多参数的方法,这些参数比寄存器的数量还要多。
CVSS Information
N/A
Vulnerability Type
N/A