Arbitrary UID Fork Request Vulnerability in Android Zygote Process

Arbitrary UID Fork Request Vulnerability in Android Zygote Process

CVE-2011-3918 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application.

Learn more about our Cis Benchmark Audit For Google Android.