CVE-2011-1149
First published: Thu Apr 21 2011(Updated: )
Android before 2.3 does not properly restrict access to the system property space, which allows local applications to bypass the application sandbox and gain privileges, as demonstrated by psneuter and KillingInTheNameOf, related to the use of Android shared memory (ashmem) and ASHMEM_SET_PROT_MASK.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | <=2.2.2 | |
| Android | =1.5 | |
| Android | =1.6 | |
| Android | =2.1 | |
| Android | =2.2-rev1 | |
| Android | =2.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://android.git.kernel.org/?p=kernel/common.git%3Ba=commit%3Bh=c98a285075f26e2b17a5baa2cb3eb6356a75597e
- http://android.git.kernel.org/?p=platform/system/core.git%3Ba=commit%3Bh=25b15be9120bcdaa0aba622c67ad2c835d9e91ca
- http://c-skills.blogspot.com/2011/01/adb-trickery-again.html
- http://forum.xda-developers.com/wiki/index.php?title=HTC_Vision#Rooting_the_G2
- http://groups.google.com/group/android-security-discuss/browse_thread/thread/15f97658c88d6827/e86db04652651971?show_docid=e86db04652651971
- https://github.com/tmzt/g2root-kmod/tree/scotty2/scotty2
- http://android.git.kernel.org/?p=kernel/common.git;a=commit;h=c98a285075f26e2b17a5baa2cb3eb6356a75597e
- http://android.git.kernel.org/?p=platform/system/core.git;a=commit;h=25b15be9120bcdaa0aba622c67ad2c835d9e91ca
Frequently Asked Questions
What is the severity of CVE-2011-1149?
CVE-2011-1149 is considered a critical vulnerability that allows local applications to bypass the application sandbox on vulnerable Android versions.
Which versions of Android are affected by CVE-2011-1149?
CVE-2011-1149 affects Android versions up to and including 2.2.2.
How can users mitigate the risks associated with CVE-2011-1149?
The best mitigation for CVE-2011-1149 is to upgrade to a newer version of Android that is not affected by this vulnerability.
What exploit methods are associated with CVE-2011-1149?
CVE-2011-1149 is exploited through methods such as psneuter and KillingInTheNameOf, which allow privilege escalation.
Is there a patch available for CVE-2011-1149?
There is no direct patch available for CVE-2011-1149; upgrading to a secure version of Android is the recommended solution.
- agent/softwarecombine
- agent/author
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-historical
- vendor/google
- canonical/android
- version/android/2.2.2
- version/android/1.5
- version/android/1.6
- version/android/2.1
- version/android/2.2-rev1
- version/android/2.2.1