Last week it was reported that Outlook app for Android, which is used by more…
After disclosing information about the problem, Google specialist Maddy Stone published a PoC exploit in the public domain, but its code was somewhat harmless, since it did not use the full potential of the vulnerability.
Now the idea was further developed by Grant Hernandez. He introduced his own PoC exploit called Qu1ckR00t.
“When I heard about the emergency disclosure of CVE-2019-2215 by Project Zero, I decided to replicate the exploit on my local device to see it in action. I so happened to have a vulnerable Pixel 2 with the exact kernel version as my main device (don’t hack me). All I needed to do was compile the exploit and run it over ADB. I downloaded the latest Android NDK and compiled the proof of concept”, — writes Grant Hernandez.
Its exploit allows bypassing such protective mechanisms as DAC (Discretionary Access Control) and Linux Capabilities (CAP), is able to disable SELinux (Security-Enhanced Linux), SECCOMP (Secure Computing Mode) and MAC (Mandatory Access Control). As a result, the tool can be used to gain quick root access to the device, giving the attacker full control.
Read also: Cybercriminals attacked French TV channel M6 with the help of the ransomware
The source code for Qu1ckR00t was published on GitHub, but not as a finished and packaged APK file. That is, the user will have to compile it himself, but after that he will get access to the application, which can provide root access with just one click.
Hernandez warns that he tested Qu1ckR00t only on Pixel 2, and inexperienced users are better off not experimenting with this tool, as they risk disrupting the OS and losing all the data.
Recall that Google engineers as part of the October Tuesday update for Android fixed the vulnerability CVE-2019-2215: patch level 2019-10-06.
Pbmsoultions.com is a domain that tries to trick you into clik to its browser notifications…
Prizestash.com is a site that tries to trick you into subscribing to its browser notifications…
Verifiedbreaking.com is a domain that tries to force you into subscribing to its browser notifications…
Themoneyminutes.com is a domain that tries to force you into subscribing to its browser notifications…
News-xcidizi.com is a domain that tries to trick you into clik to its browser notifications…
Everytraffic-flow.com is a domain that tries to trick you into subscribing to its browser notifications…