Google Android on Samsung contains an unspecified flaw that may allow an attacker to install a highly-privileged application that is embedded in an unprivileged application. No further details have been provided by the researcher.
Android on Sony Erricson X10 phones contain a race condition in the Emergency Dialer function. The issue is triggered when pressing the back button when viewing the Emergency Dialer function, which will grant a window of opportunity for the home screen to be accessed.
Open Handset Alliance Android is prone to a remote denial-of-service vulnerability.
Successfully exploiting this issue will allow an attacker to destroy the SIM card or cause the device to reset to factory settings, denying further service to legitimate users. Note that the factory reset can be performed only on Samsung devices by exploiting this issue.
Note: This issue was previously titled 'Samsung Galaxy S III USSD Code Remote Denial of Service Vulnerability'. The title and technical details have been changed to better reflect the underlying component affected.
HTC devices running the Bluetooth OBEX FTP service on Android OS is prone to a directory-traversal vulnerability.
Exploiting this issue allows an attacker to read or download arbitrary files from locations outside the application's current directory and obtain sensitive information. Other attacks may also be possible.
Open Handset Alliance Android is prone to a privilege-escalation vulnerability.
Successfully exploiting this issue can allow attackers to elevate privileges, leading to a complete compromise of the device.