[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Insect 2.0 - Exploiting Android

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Insect 2.0 - Exploiting Android
From: runlvl <runlvl@xxxxxxxxx>
Date: Sat, 12 Feb 2011 22:25:45 -0300

This video shows how to exploit Android using Insect Pro 2.0 gaining root
privileges using adb setuid exhaustion attack.

"Typically has the name “rageagainstthecage” and the code refers to it has
“CVE-2010-EASY” in one comment, but whatever you call it, it’s a pretty
smooth way of getting adbd (android’s debugging bridge daemon) to run as
root". We just make it easy for you :-)

Video: http://www.youtube.com/watch?v=wDJ1x_abjG8

Hope you enjoy!

Juan Sacco

--
_________________________________________________
Insecurity Research - Security auditing and testing software
Web: http://www.insecurityresearch.com
Insect Pro 2.0 was released stay tunned

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] -~= Mac OS X ftpd 0day =~-
Next by Date: Re: [Full-disclosure] Pen-Testing Companies in Quebec
Previous by thread: [Full-disclosure] -~= Mac OS X ftpd 0day =~-
Next by thread: [Full-disclosure] [SECURITY] [DSA 2160-1] tomcat6 security update
Index(es):
- Date
- Thread