Large-Scale Analysis of Remote Code Injection Attacks in Android Apps

<table class="algorithm-group"><tr><td><table class="algorithm" id="lst4"><tr><td colspan="2"><b>HTTP Response Header</b></td></tr><tr><td colspan="2">(1) 200 OK</td></tr><tr><td colspan="2">(2) Content-Type: text/html; charset=utf-8</td></tr><tr><td colspan="2">(3) Content-Disposition: attachment; filename=<svg height="9.22724pt" id="M61" style="vertical-align:-0.04981995pt" version="1.1" viewbox="-0.0498162 -9.17742 4.5101 9.22724" width="4.5101pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M119 710L42 683C46 669 61 568 71 474L99 486C107 548 122 682 125 705L119 710Z" id="g190-170"></path></g><g transform="matrix(.013,0,0,-0.013,2.197,0)"><path d="M119 710L42 683C46 669 61 568 71 474L99 486C107 548 122 682 125 705L119 710Z" id="g190-170"></path></g></svg>filename.txt<svg height="9.22724pt" id="M62" style="vertical-align:-0.04981995pt" version="1.1" viewbox="-0.0498162 -9.17742 4.5101 9.22724" width="4.5101pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M119 710L42 683C46 669 61 568 71 474L99 486C107 548 122 682 125 705L119 710Z" id="g190-170"></path></g><g transform="matrix(.013,0,0,-0.013,2.197,0)"><path d="M119 710L42 683C46 669 61 568 71 474L99 486C107 548 122 682 125 705L119 710Z" id="g190-170"></path></g></svg></td></tr><tr><td colspan="2">(4) Content-Length: 22</td></tr></table></td></tr></table>

<div>Content-Disposition field in HTTP header.</div>

Security and Communication Networks

lst4

Listing 4

Listing 4: Large-Scale Analysis of Remote Code Injection Attacks in Android Apps 