VDB
CVE-2011-1149
CVE-2011-1149
PUBLISHED
CVSS 7.199999809265137 HIGH
Android before 2.3 does not properly restrict access to the system property space, which allows local applications to bypass the application sandbox and gain privileges, as demonstrated by psneuter and KillingInTheNameOf, related to the use of Android shared memory (ashmem) and ASHMEM_SET_PROT_MASK.
EPSS 0.03% · 9.6th percentile
Risk Scores
CVSS 2.0
7.199999809265137
EPSS Score
0.03%
9.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| android | 1.5, 1.6, 0 |
Exploit Intelligence
- http://forum.xda-developers.com/wiki/index.php?title=HTC_Vision#Rooting_the_G2 (nist-nvd)
- http://android.git.kernel.org/?p=platform/system/core.git%3Ba=commit%3Bh=25b15be9120bcdaa0aba622c67ad2c835d9e91ca (circl)
- http://groups.google.com/group/android-security-discuss/browse_thread/thread/15f97658c88d6827/e86db04652651971?show_docid=e86db04652651971 (circl)
- http://android.git.kernel.org/?p=kernel/common.git%3Ba=commit%3Bh=c98a285075f26e2b17a5baa2cb3eb6356a75597e (circl)
- http://c-skills.blogspot.com/2011/01/adb-trickery-again.html (circl)
- https://github.com/tmzt/g2root-kmod/tree/scotty2/scotty2 (circl)
Timeline
- Apr 21, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://android.git.kernel.org/?p=platform/system/core.git%3Ba=commit%3Bh=25b15be9120bcdaa0aba622c67ad2c835d9e91ca url
- http://groups.google.com/group/android-security-discuss/browse_thread/thread/15f97658c88d6827/e86db04652651971?show_docid=e86db04652651971 url
- http://android.git.kernel.org/?p=kernel/common.git%3Ba=commit%3Bh=c98a285075f26e2b17a5baa2cb3eb6356a75597e url
- http://c-skills.blogspot.com/2011/01/adb-trickery-again.html url
- https://github.com/tmzt/g2root-kmod/tree/scotty2/scotty2 url
- http://forum.xda-developers.com/wiki/index.php?title=HTC_Vision#Rooting_the_G2 url
- https://nvd.nist.gov/vuln/detail/CVE-2011-1149 advisory
- http://android.git.kernel.org/?p=kernel/common.git;a=commit;h=c98a285075f26e2b17a5baa2cb3eb6356a75597e url
- http://android.git.kernel.org/?p=platform/system/core.git;a=commit;h=25b15be9120bcdaa0aba622c67ad2c835d9e91ca url