14 matches found
Samsung InputManagerService Unauthorized Access Vulnerability
Samsung InputManagerService is a service for Samsung SAMSUNG mobile devices, a service that Android abstracts in order to handle various user operations, itself can be seen as a Binder service entity, instantiated when the SystemServer process is started and registered to the An unauthorized acce...
SAMSUNG Mobile devices InputManagerService 安全漏洞
Samsung InputManagerService is a service for Samsung SAMSUNG mobile devices, a service that Android abstracts in order to handle various user operations, itself can be seen as a Binder service entity, instantiated when the SystemServer process is started and registered to the An unauthorized acce...
Heap overflow
On Samsung mobile devices with M6.0 and N7.x software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991...
CVE-2018-9143
On Samsung mobile devices with M6.0 and N7.x software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991...
CVE-2018-9143
CVE-2018-9143 affects Samsung mobile devices running Android M (6.0) and N (7.x). The vulnerability is a heap overflow in the sensorhub binder service, allowing code execution in a privileged process (SVE-2017-10991). Impact is rated high/critical (C/H/I/A) per NVD metrics. No exploitation detail...
Android - 'getpidcon' Permission Bypass in KeyStore Service
The keystore binder service "android.security.IKeystoreService" allows users to issue several commands related to key management, including adding, removing, exporting and generating cryptographic keys. The service is accessible to many SELinux contexts, including application contexts, but also...
Android HDCP Denial of Service Vulnerability
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. Android HDCP denial-of-service vulnerability exists because the encrypt interface provided by the HDCP service High-bandwidth Digital Content Protection does not perform strict paramet...
LG G4 - lghashstorageserver Directory Traversal
LG G4 - lghashstorageserver Directory Traversal Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=987 The lghashstorageserver binder service /system/bin/lghashstorageserver implementation on the LG G4 is vulnerable to path traversal, allowing an app to read and write 0x20 bytes fr...
LG G4 - lgdrmserver Binder Service Multiple Race Conditions Vulnerability
Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=986 The lgdrmserver binder service /system/bin/lgdrmserver implements a handle system to store pointers to objects allocated by the drm implementation /system/lib/liblgdrm.so. In...
LG G4 - lgdrmserver Binder Service Multiple Race Conditions
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=986 The lgdrmserver binder service /system/bin/lgdrmserver implements a handle system to store pointers to objects allocated by the drm implementation /system/lib/liblgdrm.so. In several places, these handles are retrieved from a...
Android tlc_server Heap Overflow Vulnerability
Android suffers from a heap overflow vulnerability in the tlcserver via the LOADTUIRESOURCE command. Android: Heap-overflow in "tlcserver" via LOADTUIRESOURCE command As a part of the TrustZone framework available on Samsung devices, Samsung provides an Android daemon which enables communication...
Samsung Devices KNOX Extensions - OTP Service Heap Overflow Exploit
Exploit for Android platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=935 As a part of the KNOX extensions available on Samsung devices, Samsung provides a new service which allows the generation of OTP tokens. The tokens themselves are generated i...
Samsung Devices KNOX Extensions - OTP Service Heap Overflow
/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=935 As a part of the KNOX extensions available on Samsung devices, Samsung provides a new service which allows the generation of OTP tokens. The tokens themselves are generated in a TrustZone application within the TEE UID:...
Return to libstagefright: exploiting libutils on Android
Posted by Mark Brand, Invalidator of Unic�o�d�e I’ve been investigating different fuzzing approaches on some Android devices recently, and this turned up the following rather interesting bug CVE 2016-3861 fixed in the most recent Android Security Bulletin, deep in the bowels of the usermode Andro...