CVE-2014-7951

Name of the Vulnerable Software and Affected Versions Android versions 4.0.4

Description A directory traversal issue exists in the Android debug bridge, allowing physically proximate attackers with a direct connection to the target device to write to arbitrary system-owned files by using a .. (dot dot) in the tar archive headers.

Recommendations For Android version 4.0.4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.