The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability in the app/aboot/aboot.c file of the Qualcomm Android operating system is due to a numerical overflow. Exploiting this vulnerability allows a local attacker to increase their privileges using a specially crafted boot image...

CVE-2014-9796

app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 2013 devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, aka Android internal bug 28820722 and Qualcomm...

Design/Logic Flaw

app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 2013 devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, aka Android internal bug 28820722 and Qualcomm...

CVE-2014-9796

CVE-2014-9796 affects Android on Nexus 5 and Nexus 7 (2013) via the Qualcomm component’s app/aboot/aboot.c, where the kernel header page size is not validated, enabling a crafted boot image to bypass access restrictions. Public details are tied to Android/Qualcomm bug references (28820722, CR6847...

Memory corruption

app/aboot/aboot.c in the Little Kernel LK bootloader, as distributed with Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory...