BugTraq
Superuser unsanitized environment vulnerability on Android <= 4.2.x Nov 13 2013 07:24PM
Kevin Cernekee (cernekee gmail com) (1 replies)
Re: Superuser unsanitized environment vulnerability on Android <= 4.2.x Nov 14 2013 03:44PM
Gleb O. Raiko (raiko niisi msk ru)
Kevin,

Considering ChainsDD Superuser you mentioned.
Unfortunately, your mail describes just potential attack vectors. While
I can't say for sure, Superuser isn't vulnerable at all, I'd like to
note that su invokes the am script in the process with the credentials
of the caller, not root. Thus, by manipulating the environment
variables, file descriptors, signals, etc, the user can get yet another
process with the same credentials, perhaps, with a shell or with an
instance of Davlik VM inside.

Regards,
Gleb.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus