Android Web Browser BMP File Integer Overflow Vulnerability

info
discussion
exploit
solution
references

Android Web Browser BMP File Integer Overflow Vulnerability

Android Web Browser is prone to an integer-overflow vulnerability because it fails to adequately handle user-supplied data.

Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will likely cause denial-of-service conditions.

This issue affects Android SDK m5-rc14 and earlier.