filmov
tv
Dirty Stream Attack, Turning Android Share Targets Into Attack Vectors
Показать описание
The Android operating system uses intents as its main means of exchanging information between applications. Besides messaging, file exchange is also possible by simply constructing an intent of action ACTION_SEND and using it to forward the desired file as an associated stream to another application. On the other end, the receiving app can define a filter in its manifest to inform the intent resolver to route the forwarded stream to a specific component.
While the sender application can construct an implicit intent and delegate the decision of choosing the target to the user, it is also possible to categorematically define a component of another package and by the time that this is exported, to trigger it by using an explicit intent....
By: Dimitrios Valsamaras
Full Abstract and Presentation Materials:
While the sender application can construct an implicit intent and delegate the decision of choosing the target to the user, it is also possible to categorematically define a component of another package and by the time that this is exported, to trigger it by using an explicit intent....
By: Dimitrios Valsamaras
Full Abstract and Presentation Materials:
0:42:02
![[BSL2023] Dirty Stream](https://i.ytimg.com/vi/5QsHrAQC3OQ/hqdefault.jpg)
0:39:58
0:19:31
0:00:13
0:00:22
0:00:16
0:00:24
0:00:24
0:16:42
0:23:51
0:09:39
0:09:02
0:00:15
0:00:27
0:01:02
0:04:09
0:00:16
0:01:30
0:01:00
0:00:33
0:00:17
0:00:27
0:00:36