7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
A vulnerability in the kernel allows local users to gain privileges due to function pointers not being initialised.
According to one source, Android versions up to 3.2.6 are vulnerable
blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2692
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e694958388c50148389b0e9b9e9e8945cf0f1b98
vulmon.com/exploitdetails?qidtp=exploitdb&qid=9477
www.researchgate.net/publication/323635885_A_survey_of_Android_exploits_in_the_wild