The Hidden RCE Surfaces That Control the Droids

Explore the hidden Remote Code Execution (RCE) vulnerabilities in Android OS libraries that process incoming files through various APIs. Dive into how these libraries handle files from untrusted sources, including those sent via MMS, chat apps, emails, and web browsers. Learn about the potential security risks associated with processing these files in system applications like Gallery, Photos, and Settings. Presented by Qidan He and Juntao Wu, this 42-minute Black Hat conference talk uncovers critical security insights for Android developers and cybersecurity professionals.

The Hidden RCE Surfaces That Control the Droids