VYPR
Unrated severityNVD Advisory· Published Jul 8, 2011· Updated Jun 16, 2026

CVE-2011-1001

CVE-2011-1001

Description

dexdump in Android SDK before 2.3 does not properly perform structural verification, which allows user-assisted remote attackers to cause a denial of service (dexdump crash) and possibly execute arbitrary code via a malformed APK or dex file that calls a method using more arguments than the number of register that have been declared for that method.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • cpe:2.3:a:google:android_sdk:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:google:android_sdk:*:*:*:*:*:*:*:*range: <=2.2
    • cpe:2.3:a:google:android_sdk:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:google:android_sdk:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:google:android_sdk:1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:google:android_sdk:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:google:android_sdk:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:google:android_sdk:2.1:*:*:*:*:*:*:*
    • (no CPE)range: <2.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.