1901 matches found
Google Android - pm_qos KASLR Bypass Vulnerability
Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=971 The "pmqos" module exposes an interface to kernel space for specifying QoS dependencies. In order to aid in debugging this interface, the module exposes a "debugfs" interface,...
Google Android MediaTek Drivers Elevation of Privilege Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, and MediaTek Driver is a MediaTek driver component used in one of MediaTek's devices. An elevation of privilege vulnerability exists in the MediaTek application in Android version...
Google Android Information Disclosure Vulnerability (CNVD-2017-00513)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. Google Android has an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...
Unspecified vulnerability in Google Android Qualcomm component (CNVD-2017-02544)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. Google Android has an unspecified vulnerability. An attacker can exploit the vulnerability to perfo...
Google Android Products Qualcomm Bootloader Elevation of Privilege Vulnerability (CNVD-2017-00583)
Google Android is an operating system developed by Google for smartphones. Google Android Products Qualcomm Bootloader has a security vulnerability that allows remote attackers to exploit the vulnerability via a specially crafted application that can elevate privileges...
Google Android Products Qualcomm Bootloader Elevation of Privilege Vulnerability
Google Android is an operating system developed by Google for smartphones. Google Android Products Qualcomm Bootloader has a security vulnerability that allows remote attackers to exploit the vulnerability via a specially crafted application that can elevate privileges...
Google Android MediaTek component elevation of privilege vulnerability (CNVD-2017-00524)
Google Android is an operating system developed by Google for smartphones. A security vulnerability in the Google Android MediaTek component allows remote attackers to exploit the vulnerability to elevate privileges through specially crafted applications...
Google Android Remote Code Execution Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A remote code execution vulnerability exists in Google Android, which can be exploited by an attacker to execute arbitrary code in the context of the mediaserver process. A failed...
Unspecified Vulnerability in Google Android Qualcomm Component
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. Google Android has an unspecified vulnerability. An attacker can exploit the vulnerability to perfo...
Google Android Qualcomm Video Driver Elevation of Privilege Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in Google Android Qualcomm Video Driver, which can be exploited by an attacker to enable a malicious application to execute arbitrar...
Google Android - 'IOMXNodeInstance::enableNativeBuffers' Unchecked Index
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=932 The code in IOMXNodeInstance.cpp that handles enableNativeBuffers uses portindex without validation, leading to writing the dword value 0 or 1 at an attacker controlled offset from the IOMXNodeInstance structure. The vulnerable...
Google Android - 'BadKernel' Remote Code Execution
function gc forvar i=0;i0.toString16; function log var str = ""; forvar i=0;i"; console.logstr; document.writestr; function setaccessaddressaddress controllerdv.setUint3234,address,true; controllerdv.setUint3244,0x40000000,true; function getdateviewaddress setaccessaddressaddress;...
Google Android - BadKernel Remote Code Execution
Google Android - BadKernel Remote Code Execution function gc forvar i=0;i0.toString16; function log var str = ""; forvar i=0;i"; console.logstr; document.writestr; function setaccessaddressaddress controllerdv.setUint3234,address,true; controllerdv.setUint3244,0x40000000,true; function...
Google Android Qualcomm Bus Driver Elevation of Privilege Vulnerability
Google Nexus 5X and others are smart devices from Google, Inc. in the U.S. Qualcomm bus is one of the Qualcomm bus components. An elevation of privilege vulnerability exists in Qualcomm bus in Google products. An attacker can exploit the vulnerability to execute arbitrary code in the kernel conte...
Google Android 'Qualcomm' Component Has Unspecified Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An unspecified vulnerability exists in the Google Android 'Qualcomm' component. An attacker can exploit the vulnerability to perform unauthorized operations. This could facilitate...
Google Android Qualcomm Component Information Disclosure Vulnerability (CNVD-2016-11051)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. An information disclosure vulnerability exists in the Google Android Qualcomm component. An attacke...
Unspecified vulnerability in Google Android 'Qualcomm' component (CNVD-2016-11032)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An unspecified vulnerability exists in the Google Android 'Qualcomm' component. An attacker can exploit the vulnerability to perform unauthorized operations. This could facilitate...
Google Android - getpidcon Usage binder Service Replacement Race Condition
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=851 This is very similar to forshaw's bug , . The servicemanager, when determining whether the sender of a binder transaction is authorized to register a service via SVCMGRADDSERVICE, looks up the sender's SELinux context using...
Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow
Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch...
Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch between the size calculated by utf16toutf8length and the number of bytes...