Full title: Android OS 4.4.4 Backup Agent Arbitrary Code Execution Vulnerability 
Category: remote exploits
Platform: Android
The Android backup agent implementation was vulnerable to privilege escalation and race condition. An attacker with adb shell access could run arbitrary code as the system (1000) user (or any other valid package). The attack is tested on Android OS 4.4.4.

# 0day.today @ http://0day.today/