CVE-2014-8507

Android < 4.4.4 - SQL Injection via WAPPushManager PDU Fields

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-8507. PoCs published by Baidu X-Team.

AI-analyzed exploit summary This writeup details a SQL injection vulnerability in Android <5.0's WAPPushManager, allowing attackers to remotely launch arbitrary activities or services via malformed WAPPush messages. The exploit leverages unescaped SQL queries in the `queryLastApp` method to manipulate intent components.

Description

Multiple SQL injection vulnerabilities in the queryLastApp method in packages/WAPPushManager/src/com/android/smspush/WapPushManager.java in the WAPPushManager module in Android before 5.0.0 allow remote attackers to execute arbitrary SQL commands, and consequently launch an activity or service, via the (1) wapAppId or (2) contentType field of a PDU for a malformed WAPPush message, aka Bug 17969135.

Exploits (1)

exploitdb WRITEUP

by Baidu X-Team · textdosandroid

https://www.exploit-db.com/exploits/35382

View Code ZIP pw:eip

This writeup details a SQL injection vulnerability in Android <5.0's WAPPushManager, allowing attackers to remotely launch arbitrary activities or services via malformed WAPPush messages. The exploit leverages unescaped SQL queries in the `queryLastApp` method to manipulate intent components.

Classification

Writeup 100%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Android <5.0

No auth needed

Prerequisites: Victim device running Android <5.0 with WAPPushManager installed · Ability to send malformed WAPPush messages to the target

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2014/Nov/86

Vendor Advisory x_refsource_confirm

https://android.googlesource.com/platform/frameworks/base/+/48ed835468c6235905459e6ef7df032baf3e4df6

Exploit x_refsource_misc

http://packetstormsecurity.com/files/129283/Android-WAPPushManager-SQL-Injection.html

Exploit x_refsource_misc

http://xteam.baidu.com/?p=167

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/71310

Scores

EPSS 0.0155

EPSS Percentile 72.0%

Details

CWE

CWE-89

Status published

Products (43)

google/android 1.0

google/android 1.1

google/android 1.5

google/android 1.6

google/android 2.0

google/android 2.0.1

google/android 2.1

google/android 2.2 (2 CPE variants)

google/android 2.2.1

google/android 2.2.2

... and 33 more

Published Dec 15, 2014

Tracked Since Feb 18, 2026