30 matches found
Blacknote 2.2.1 - Denial of Service Exploit
Exploit Title: Blacknote 2.2.1 - Denial of Service PoC Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=notepad.note.notas.notes.notizen&hl=esMX Version: 2.2.1 Category: DoS Android Vulnerability BlackNote Bloc de notas is vulnerable to a DoS condition when a...
Attacking the Qualcomm Adreno GPU
Posted by Ben Hawkes, Project Zero When writing an Android exploit, breaking out of the application sandbox is often a key step. There are a wide range of remote attacks that give you code execution with the privileges of an application like the browser or a messaging application, but a sandbox...
CVE-2019-13747
Uninitialized data in rendering in Google Chrome on Android prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Android - Binder Driver Use-After-Free
The following issue exists in the android-msm-wahoo-4.4-pie branch of https://android.googlesource.com/kernel/msm and possibly others: There is a use-after-free of the wait member in the binderthread struct in the binder driver at /drivers/android/binder.c. As described in the upstream commit:...
AndroidSecNotes
It is an offensive tool for Android. The repository contains learning notes about Android Security, specifically about the Android Runtime ART and its debugging tools. The notes cover the format of Dex files, the ART runtime, and the Hook framework. The notes mention the use of the "oatdump" tool...
ScreenStream 3.0.15 - Denial of Service Exploit
!/usr/bin/python coding: utf-8 Author: Marcelo Vázquez aka s4vitar ScreenStream 3.0.15 Remote Denial of Service DoS Exploit Title: ScreenStream 3.0.15 Remote Denial of Service DoS Date: 2019-02-21 Exploit Author: Marcelo Vázquez aka s4vitar Vendor Homepage: http://mobzapp.com/mirroring/index.html...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Google Android
Blueborne CVE-2017-0785 This CVE and all the other BlueBorne...
Hacking Team Spyware preloaded with UEFI BIOS Rootkit to Hide Itself
Last Week someone just hacked the infamous Hacking Team, The Italy-based cyber weapons manufacturer and leaked a huge trove of 400GB internal data, including: Emails Hacking tools Zero-day exploits Surveillance tools Source code for Spyware A spreadsheet listing every government client with date ...
WhatsApp 2.11.476 - Remote Reboot/Crash App Android Exploit
Exploit for Android platform in category dos / poc !/usr/bin/python -- coding: utf-8 - Title: WhatsApp Remote Reboot/Crash App Android Product: WhatsApp Vendor Homepage: http://www.whatsapp.com Vulnerable Versions: 2.11.476 Tested on: WhatsApp v2.11.476 on MotoG 2014 -Android 4.4.4 Date: 26/12/20...
Russian Hacker put up an Android Firefox Zero-Day Exploit for Sale
A Russian Exploit writer and underground Hacker who goes by the handle "fil9" put up an Android Firefox Zero-Day Exploit for Sale in an open Exploit Market. Author claims a Zero Day vulnerability in Firefox for Android, which works on Firefox versions 23/24/26 Nightly. The advertisement was spott...