wired0ut

3 exploits Active since Dec 2012
CVE-2019-2215 NOMISEC HIGH
Android Binder Use-After-Free Exploit
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
2 stars
CVSS 7.8
CVE-2012-6422 NOMISEC WORKING POC
Samsung Galaxy S2, Galaxy Note 2, MEIZU MX - Arbitrary Physical Memory Access via /dev/exynos-mem Weak Permissions
The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions (0666) for /dev/exynos-mem, which allows attackers to read or write arbitrary physical memory and gain privileges via a crafted application, as demonstrated by ExynosAbuse.
1 stars
CVE-2020-0423 NOMISEC HIGH WORKING POC
Android - Use-After-Free in binder_release_work
In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-161151868References: N/A
CVSS 7.8