48 matches found
EUVD-2013-6571
Malware in sbrugna...
EUVD-2013-6570
Malware in sbrugna...
EUVD-2013-6572
Malware in sbrugna...
SUSE CVE-2012-4190
The FT2FontEntry::CreateFontEntry function in FreeType, as used in the Android build of Mozilla Firefox before 16.0.1 on CyanogenMod 10, allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unspecified vectors...
CyanogenMod 12 Stagefright (.MP4 tx3g Integer Overflow) Remote Code Execution Exploit
Exploit for windows platform in category remote exploits !/usr/bin/python2 CyanogenMod 12 Stagefright .MP4 tx3g Integer Overflow Exploit Remote Code Execution Author: Marcin Kozlowski email protected Based on: https://googleprojectzero.blogspot.com/2015/09/stagefrightened.html On CyanogenMod make...
Cyanogen Shutting Down All Services; No More Android ROM Updates
A bittersweet Christmas and New Year for users and fans of the most popular custom Android ROM, Cyanogen OS. Cyanogen that tried and failed to kill Google's Android operating system is now shutting down the custom services that it provides to phones that run its Cyanogen OS as we know it and the...
Exploit for Race Condition in Canonical Ubuntu_Linux
cowroot Universal Android root tool based on CVE-2016-5195. Wa...
CyanogenMod ROMs - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application CyanogenMod ROMs published at the 'play' market has multiple vulnerabilities...
wiki.cyanogenmod.org XSS vulnerability
Vulnerable URL: https://wiki.cyanogenmod.org/thumb.php?f=xssposed%23%3Cbody%09onload=confirm%28String.fromCharCode%2888,83,83,80,79,83,69,68%29%29%3E Details: Description| Value ---|--- Patched:| Yes, at 03.03.2016 Latest check for patch:| 03.03.2016 17:29 GMT Vulnerability type:| XSS Vulnerabili...
CVE-2015-1538
Integer overflow in the SampleTable::setSampleToChunkParams function in SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code via crafted atoms in MP4 data that trigger an unchecked multiplication, aka internal bug 20139950, a related...
Android Stagefright high-risk vulnerability: a preliminary study-vulnerability warning-the black bar safety net
Order Shocked Stagefright exposed significant vulnerabilities can result in remote code execution, even clockwork MMS, it is possible the invasion of the user mobile device. This sounds but a rare case of a large vulnerability., as security personnel, nature good steak with a steak insider...
Initiate--Stagefright vulnerability of the century-vulnerability and early warning-the black bar safety net
0x00 sequence Last night shocked Stagefright broke significant vulnerabilities can result in remote code execution, even clockwork MMS, it is possible the invasion of the user mobile device. This sounds but a rare case of a large vulnerability., as security personnel, nature good steak with a ste...
Gello: Cyanogen's Customizable Web Browser for Android
Get ready for a new Android Browser! Android ROM developer CyanogenMod has announced that it is working on a new browser for Android devices. Dubbed Gello, the open-source browser is based on Google's Chromium project and includes a ton of customization options for Android. The team provided a...
Researcher Found TextSecure Messenger App Vulnerable to Unknown Key-Share Attack
Do you use TextSecure Private Messenger for your private conversations? If yes, then Are you sure you are actually using a Secure messaging app? TextSecure, an Android app developed by Open WhisperSystems, is completely open-source and claims to support end-to-end encryption of text messages. The...
SwiFTP 1.11 - Overflow DoS PoC
No description provided by source. Exploit Title: SwiFTP v1.11 Overflow Dos PoC Software Link: http://swiftp.googlecode.com/files/SwiFTP1.11.apk Version: v1.11 Tested on: Android OS G1 Rogers / Rooted CyanogenMod-4.0.4 !/usr/bin/perl Simple Dos Crap for the Android app : SwiFTP Server v1.11 by...
Wiko Mobiles Can be Remotely Crashed with a Text Message
A vulnerability has been identified in Wiko Mobiles that could allow anyone to remotely force it to shut down abruptly with a text message only. Wiko is a two-year-old French Mobile manufacturing company known for its cheapest mobiles and smartphones. French blogger Korben reported that just by...
CVE-2013-6774
Untrusted search path vulnerability in the ChainsDD Superuser package 3.1.3 for Android 4.2.x and earlier, CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier, and Chainfire SuperSU package before 1.69 for Android 4.2.x and earlier allows attackers to load an...
CVE-2013-6768
Untrusted search path vulnerability in the CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier allows attackers to trigger the launch of a Trojan horse appprocess program via a crafted PATH environment variable for a /system/xbin/su process...
CVE-2013-6769
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android allows attackers to gain privileges via shell metacharacters in the -c option to /system/xbin/su...
Design/Logic Flaw
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android allows attackers to gain privileges via shell metacharacters in the -c option to /system/xbin/su...