icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Android < 2.3 Multiple Vulnerabilities

High

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

Versions of Google Android operating system prior to 2.3 are potentially affected by multiple vulnerabilities :

- A privilege escalation vulnerability exists in the Zygote/Dalvik virtual machine framework.

- A denial-of-service issue exists that can cause 'dexdump' to crash (CVE-2011-1001).

Solution

Upgrade to Google Android operating system version 2.3 or later.