Webkit Normalize Bug - Android 2.2

No description provided by source. !-- CVE-2010-1759 webkit normalize bug Tested on Moto Droidx2 running 2.2. Droidx2 running 2.3 is vulnerable but exploit fails due to non-executable heap. Still working on a way around that : 2.1 - 2.3 emulator. The changes needed are documented in the code. The...

Android FTPServer 1.9.0 - Remote DoS

No description provided by source. Exploit Title: Android FTPServer 1.9.0 Remote DoS Date: 03/20/12 Author: G13 Twitter: @g13net Software Site: https://sites.google.com/site/andreasliebigapps/ftpserver/ Download Link: http://www.g13net.com/ftpserver.apk Version: 1.9.0 Category: DoS android...

Android Kernel 2.6 - Local DoS Crash PoC

No description provided by source. Exploit Title: Android Kernel 2.6 Local DoS Date: 12/7/12 Author: G13 Twitter: @g13net Versions: Android 2.2, 2.3 Category: DoS android Vulnerability The Android OS is vulnerable to a local DoS when a filename with a length of 2048 or larger is attempted to be...

Android FTPServer 1.9.0 Denial Of Service

Exploit Title: Android FTPServer 1.9.0 Remote DoS Date: 03/20/12 Author: G13 Twitter: @g13net Software Site: https://sites.google.com/site/andreasliebigapps/ftpserver/ Download Link: http://www.g13net.com/ftpserver.apk Version: 1.9.0 Category: DoS android Vulnerability FTPServer is vulnerable to ...

Webkit normalize bug for android 2.2 (CVE-2010-1759)

No description provided by source. !-- CVE-2010-1759 webkit normalize bug Tested on Moto Droidx2 running 2.2. Droidx2 running 2.3 is vulnerable but exploit fails due to non-executable heap. Still working on a way around that : 2.1 - 2.3 emulator. The changes needed are documented in the code. The...

Android 2.2 Webkit Normalize

LOADING... var elem1 = document.getElementById"test1"; var elem2 = document.getElementById"test2"; var elem3 = document.getElementById"test3"; function spray for var i = 0; i 180000; i++ var s = new Stringunescape"\u0052\u0052"; // "\u0056\u0056" FOR EMULATOR var scode = unescape"\u5200\u5200"; /...

Webkit normalize bug for android 2.2 (CVE-2010-1759)

Exploit for Android platform in category remote exploits LOADING... var elem1 = document.getElementById"test1"; var elem2 = document.getElementById"test2"; var elem3 = document.getElementById"test3"; function spray for var i = 0; i 180000; i++ var s = new Stringunescape"\u0052\u0052"; //...

Webkit Normalize Bug - Android 2.2

LOADING... var elem1 = document.getElementById"test1"; var elem2 = document.getElementById"test2"; var elem3 = document.getElementById"test3"; function spray for var i = 0; i 180000; i++ var s = new Stringunescape"\u0052\u0052"; // "\u0056\u0056" FOR EMULATOR var scode = unescape"\u5200\u5200"; /...

Stack overflow

Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the FrameworkListener::dispatchCommand method with the wrong number of arguments, as demonstrated by...

CVE-2011-3874

CVE-2011-3874 describes a use-after-free vulnerability in Android’s libsysutils, triggered via FrameworkListener::dispatchCommand when invoked with an incorrect number of arguments. Affected Android versions are 2.2.x–2.2.2 and 2.3.x–2.3.6. The issue was demonstrated by zergRush and, per sources,...

Android SD卡内容信息泄露漏洞

BUGTRAQ ID: 45048 Android是Google通过Open Handset Alliance发起的项目，用于为移动设备提供完整的软件集，包括操作系统、中间件等。 Android的实现上存在一些问题，远程攻击者可利用此漏洞获取设备SD卡的文件，造成敏感信息泄露。...

Nook Color Bluetooth Chip Hacked !

Barnes and Noble's full color touch screen, Wi-Fi and 3G enabled eReader tablet NOOK color ships with a Bluetooth chip that is not activated. Well, not anymore. A user occip at XDA-developers has managed to start the Bluetooth on the device and scanning and connecting to devices is working well...