The vulnerability of microprogramming software in Samsung Galaxy S2, Galaxy Note 2, and Meizu MX devices stems from deficiencies in access control mechanisms, allowing attackers to escalate their privileges through specially created applications.

🗓️ 08 Sep 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Access control flaw in microprogramming software on Galaxy S II, Galaxy Note II, and Meizu MX enables privilege escalation via a crafted app.

Reporter	Title	Published	Views	Family All 9
android	exynosroot	15 Dec 201200:00	–	android
Circl	CVE-2012-6422	24 Jun 201412:15	–	circl
CVE	CVE-2012-6422	18 Dec 201200:00	–	cve
Cvelist	CVE-2012-6422	18 Dec 201200:00	–	cvelist
EUVD	EUVD-2012-6277	7 Oct 202500:30	–	euvd
NVD	CVE-2012-6422	18 Dec 201200:55	–	nvd
Prion	Code injection	18 Dec 201200:55	–	prion
RedhatCVE	CVE-2012-6422	22 May 202512:13	–	redhatcve
UbuntuCve	CVE-2012-6422	18 Dec 201200:55	–	ubuntucve

Source	Link
arstechnica	www.arstechnica.com/security/2012/12/developer-warns-of-critical-vulnerability-in-many-samsung-smartphones/
forum	www.forum.xda-developers.com/showthread.php
forum	www.forum.xda-developers.com/showthread.php
project-voodoo	www.project-voodoo.org/articles/instant-fix-app-for-exynos-mem-abuse-vulnerability-no-root-required-reversible
sammobile	www.sammobile.com/2012/12/16/major-vulnerability-found-on-exynos-4-devices/
securityweek	www.securityweek.com/new-vulnerability-exposed-samsungs-android-devices
github	www.github.com/FSecureLABS/mercury-modules/blob/master/metall0id/root/exynosmem/exynos-abuse/jni/exynos-abuse.c
blog	www.blog.azimuthsecurity.com/2013/02/re-visiting-exynos-memory-mapping-bug.html
web	www.web.nvd.nist.gov/view/vuln/detail

08 Sep 2021 00:00Current

5.5Medium risk

Vulners AI Score5.5

CVSS 29.3

EPSS0.06612

galaxy s two galaxy note two meizu mx access control privilege escalation microprogramming software