Exploit for Improper Input Validation in Samsung Samsung_Mobile

PoC exploit for CVE-2016-4038, a 0day vulnerability in System Management Mode code execution for Lenovo ThinkPad model line. The exploit targets the SystemSmmRuntimeRt UEFI driver GUID: 7C79AC8C-5E6C-4E3D-BA6F-C260EE7C172E and allows arbitrary code execution in System Management Mode. The...

CVE-2016-4038

The CVE-2016-4038 issue affects Samsung devices running Android KK (4.4) or L on APQ8084, MSM8974, or MSM8974pro, due to an array bounds issue in msm_sensor_config (kernel/drivers/media/platform/msm/camera_v2/sensor/msm_sensor.c). Local users could exploit gpio_config.gpio_name to cause unspecifi...