Google » Android Sdk : Security Vulnerabilities, CVEs, Published In 2008 (Code Execution)
Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field.
Max CVSS
7.5
EPSS Score
9.11%
Published
2008-03-06
Updated
2018-10-15
Heap-based buffer overflow in the GIF library in the WebKit framework for Google Android SDK m3-rc37a and earlier allows remote attackers to execute arbitrary code via a crafted GIF file whose logical screen height and width are different than the actual height and width.
Max CVSS
6.8
EPSS Score
9.41%
Published
2008-03-06
Updated
2018-10-15
2 vulnerabilities found