7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
61.2%
Android before 2.3 does not properly restrict access to the system property
space, which allows local applications to bypass the application sandbox
and gain privileges, as demonstrated by psneuter and KillingInTheNameOf,
related to the use of Android shared memory (ashmem) and
ASHMEM_SET_PROT_MASK.
Author | Note |
---|---|
jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels |