ID CVE-2017-13236
Summary In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-68217699.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
exploit-db via4
description Android - 'getpidcon' Permission Bypass in KeyStore Service. CVE-2017-13236. Dos exploit for Android platform
file exploits/android/dos/43996.txt
id EDB-ID:43996
last seen 2018-02-07
modified 2018-02-07
platform android
port
published 2018-02-07
reporter Exploit-DB
source https://www.exploit-db.com/download/43996/
title Android - 'getpidcon' Permission Bypass in KeyStore Service
type dos
refmap via4
bid 102979
confirm https://source.android.com/security/bulletin/2018-02-01
Last major update 12-02-2018 - 14:29
Published 12-02-2018 - 14:29
Last modified 13-02-2018 - 21:29
Back to Top