7 matches found
ZTE Blade Vantage Z839 Emode.APK android.uid.system Privilege Escalation
ZTE Blade Vantage Z839 Emode.APK android.uid.system LPE exploit =============================================================== ZTE Blade Vantage Z839 Android handsets running 7.1.1 contain an engineering mode that utilizes "Android Secret Codes" for accessing hidden engineering functionality. Su...
Android Janus - APK Signature Bypass Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/payload/apk' class MetasploitModule "Android Janus APK Signature bypass", 'Description' = %q This module exploits CVE-2017-13156 in Android to install ...
CVE-2017-13156
creationtimestamp| type| source ---|---|--- 2019-11-07 02:36:10+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/android/local/janus.rb 2019-11-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/47601 2021-08-17 13:01:03+00:00| seen|...
Android Janus APK Signature Bypass
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/payload/apk' class MetasploitModule "Android Janus APK Signature bypass", 'Description' = %q This module exploits CVE-2017-13156 in Android to install ...
Android Janus APK Signature bypass
This module exploits CVE-2017-13156 in Android to install a payload into another application. The payload APK will have the same signature and can be installed as an update, preserving the existing data. The vulnerability was fixed in the 5th December 2017 security patch, and was additionally fix...
CVE-2017-13156
An elevation of privilege vulnerability in the Android system art. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64211847...
CVE-2017-13156
CVE-2017-13156 is an Android UART-style APK signature bypass (Janus) that allows an attacker to inject or modify an APK without breaking its V1 signature, enabling installation updates with attacker-controlled code. The vulnerability affects Android 5.1.1 through 8.0 (ART), enabling elevation of ...