CVE-2011-1149
Android < 2.3 - Privilege Escalation via System Property Space Access
Title source: llmDescription
Android before 2.3 does not properly restrict access to the system property space, which allows local applications to bypass the application sandbox and gain privileges, as demonstrated by psneuter and KillingInTheNameOf, related to the use of Android shared memory (ashmem) and ASHMEM_SET_PROT_MASK.
References (6)
Core 6
Core References
Patch x_refsource_confirm
http://android.git.kernel.org/?p=platform/system/core.git%3Ba=commit%3Bh=25b15be9120bcdaa0aba622c67ad2c835d9e91ca
Mailing List x_refsource_confirm
http://groups.google.com/group/android-security-discuss/browse_thread/thread/15f97658c88d6827/e86db04652651971?show_docid=e86db04652651971
Patch x_refsource_confirm
http://android.git.kernel.org/?p=kernel/common.git%3Ba=commit%3Bh=c98a285075f26e2b17a5baa2cb3eb6356a75597e
Various Sources x_refsource_misc
http://c-skills.blogspot.com/2011/01/adb-trickery-again.html
Patch x_refsource_misc
https://github.com/tmzt/g2root-kmod/tree/scotty2/scotty2
Exploit x_refsource_misc
http://forum.xda-developers.com/wiki/index.php?title=HTC_Vision#Rooting_the_G2
Scores
EPSS
0.0032
EPSS Percentile
23.8%
Details
CWE
CWE-264
Status
published
Products (6)
google/android
1.5
google/android
1.6
google/android
2.1
google/android
2.2 rev1
google/android
2.2.1
google/android
< 2.2.2
Published
Apr 21, 2011
Tracked Since
Feb 18, 2026