145 matches found
kernel: Use-after-free in __blk_drain_queue() function in block/blk-core.c
A flaw was found in the Linux kernel’s block driver implementation blkdrainqueue function where a use-after-free condition could be triggered while draining the outstanding command queue in the systems block device subsystem. An attacker could use this flaw to crash the system or corrupt local...
CVE-2017-0636
An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2017-0636
An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2017-0636
An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2017-0636
CVE-2017-0636 is an elevation of privilege in the MediaTek command queue driver on Android, enabling a local attacker to execute arbitrary code in the kernel context. Affected component: MediaTek command queue driver (MediaTek components in the 2017-06 Android bulletin). Root cause: vulnerability...
Android MediaTek Command Queue Driver Elevation of Privilege Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.MediaTek command queue driver is one of MediaTek's command queue drivers. An elevation of privilege vulnerability exists in the MediaTek command queue driver in Android. An attacker...
Google Android MediaTek command queue driver information disclosure vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.MediaTek command queue driver is one of MediaTek's command queue drivers. An information disclosure vulnerability exists in the MediaTek command queue driver in versions of Android...
CVE-2017-0625
An information disclosure vulnerability in the MediaTek command queue driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android...
CVE-2017-0625
An information disclosure vulnerability in the MediaTek command queue driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android...
CVE-2017-0618
An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
Information disclosure
An information disclosure vulnerability in the MediaTek command queue driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android...
CVE-2017-0618
An elevation of privilege vulnerability in the MediaTek command queue driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2017-0625
The CVE-2017-0625 entry corresponds to an information disclosure vulnerability in the MediaTek command queue driver affecting Android. Connected CNVD records describe impact as local information disclosure enabling a malicious local app to access data outside its permissions, with Android version...
CVE-2017-0625
An information disclosure vulnerability in the MediaTek command queue driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android...
Google Android MediaTek command queue driver elevation of privilege vulnerability
Google Android is a Linux-based operating system for smartphone devices. An elevation of privilege vulnerability exists in the Google Android MediaTek command queue driver, which can be exploited by a remote attacker to construct a malicious application that can be elevated in privilege by induci...
Interactive Multi User Javascript Shell: JSShell
Interactive Multi User Javascript Shell An interactive multi-user web based shell written in Python with Flask for server side and of course Javascript and HTML client side. It was initially created in order to debug remote esoteric browsers during tests and research. Features Multi client suppor...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerabilities of MediaTek components—M4U drivers, audio drivers, touchscreen drivers, GPU drivers, and Android operating system command queue drivers—are related to deficiencies in access control. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code, leading t...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerabilities of MediaTek components—M4U drivers, audio drivers, touchscreen drivers, GPU drivers, and Android operating system command queue drivers—are related to deficiencies in access control. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code, leading t...
Google Android MediaTek component elevation of privilege vulnerability (CNVD-2017-03385)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. MediaTek is a MediaTek component used in one of MediaTek's devices. An elevation of privilege vulnerability exists in the MediaTek components of Android, including the...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerabilities of MediaTek components—M4U drivers, audio drivers, touchscreen drivers, GPU drivers, and Android operating system command queue drivers—are related to deficiencies in access control. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code, leading t...