18 matches found
Exploit for Incorrect Implementation of Authentication Algorithm in Google Android
No d...
EUVD-2020-1804
Malware in sbrugna...
EUVD-2021-17449
Malware in sbrugna...
EUVD-2019-11803
Malware in sbrugna...
EUVD-2020-1801
Malware in sbrugna...
EUVD-2021-26153
Malware in sbrugna...
EUVD-2021-3020
Malicious code in bioql PyPI...
MSc-Cybersecurity-Capstone-Android-Exploitation
MSc Cybersecurity Capstone Project Title: Android Exploit...
CVE-2020-0385
In Parseinsh of easmdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...
Linux Distros Unpatched Vulnerability : CVE-2020-0478
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In extendframelowbd of restoration.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi...
Analyzing a Modern In-the-wild Android Exploit
By Seth Jenkins, Project Zero Introduction In December 2022, Google’s Threat Analysis Group TAG discovered an in-the-wild exploit chain targeting Samsung Android devices. TAG’s blog post covers the targeting and the actor behind the campaign. This is a technical analysis of the final stage of one...
PT-2023-8805 · Huawei +1 · Huawei Tablets +4
Name of the Vulnerable Software and Affected Versions: HUAWEI phones and tablets affected versions not specified Description: The issue is related to unauthorized calling and is caused by incorrect clearance or release of resources in the EMUI shell of the HarmonyOS and Android operating systems...
PhoneSploit-Pro - An All-In-One Hacking Tool To Remotely Exploit Android Devices Using ADB And Metasploit-Framework To Get A Meterpreter Session
An all-in-one hacking tool written in Python to remotely exploit Android devices using ADB Android Debug Bridge and Metasploit-Framework. Complete Automation to get a Meterpreter session in One Click This tool can automatically Create , Install , and Run payload on the target device using...
SUSE CVE-2013-6282
The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against...
In-the-Wild Series: Android Exploits
This is part 4 of a 6-part series detailing a set of vulnerabilities found by Project Zero being exploited in the wild. To read the other parts of the series, see the introduction post. Posted by Mark Brand, Project Zero A survey of the exploitation techniques used by a high-tier attacker against...
UBUNTU-CVE-2013-6282
The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against...
CVE-2013-6282
The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against...
PT-2013-5986 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 3.5.5 Description: The issue arises from improper input validation in the Linux kernel, specifically in the 1 get user and 2 put user API functions on the v6k and v7 ARM platforms. This allows attackers to read ...