ExymemBrk.A

AppRisk Coverage: Yes
Type: Exploit
OWASP: M4: Unintended Data Leakage
Aliases:

• Exploit/ExymemBrk.A

Platform: Android
File size (bytes): N/A
Filename: N/A
App title: N/A
MD5 Hash: N/A
SHA1 hash: N/A
Affected CVE:

• CVE-2012-4222

Details or analysis:

This is exploit code that takes advantage of vulnerability CVE-2012-4222 in order gain root access of the affected device. The code attempts to write to stored code “/dev/exynos-nem” – this code is present on devices using the Exynos ARM processor such as Samsung Galaxy S and other Samsung Android devices and phones.

The exploit may be packaged with other code, or another trojan.

Reference:

• http://forum.xda-developers.com/showthread.php?t=2048511
• https://en.wikipedia.org/wiki/Exynos
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4222
• http://www.kb.cert.org/vuls/id/702452