MempoDroid.A

Severity Level: Medium
AppRisk Coverage: Yes
Type: Exploit
OWASP: M4: Unintended Data Leakage
Aliases:

• Linux Local Privilege Escalation via SUID
• Exploit:AndroidOS/CVE-2012-0056.A

Platform: Android, Linux
File size (bytes): N/A
Filename: N/A
App title: N/A
MD5 Hash: N/A
SHA1 hash: N/A
Affected CVE:

• CVE-2012-0056

Details or analysis:

In Linux kernel after 2.6.39 and before 3.2.2, with ASLR disabled, the “mem_write” function does not properly check permissions when writing to process memory. This vulnerability could allow local users to gain privileges by modifying process memory.

CVE-2012-0056 is not known to be exploitable remotely.

Reference:

• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0056
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0056′
• https://git.zx2c4.com/CVE-2012-0056/tree/mempodipper.c
• http://blog.zx2c4.com/749
• https://bugzilla.redhat.com/show_bug.cgi?id=782642