CVE-2021-25461 PoC — Samsung SMR 缓冲区错误漏洞

Source

https://github.com/bkojusner/CVE-2021-25461

Associated Vulnerability

Title:Samsung SMR 缓冲区错误漏洞 (CVE-2021-25461)
Description:Samsung SMR是韩国三星（Samsung）公司的一个系统补丁包。提供了三星手机应用的补丁程序。 Samsung SMR存在安全漏洞，该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。

Readme

# CVE-2021-25461

This is a repo with the Proof of Concept for the CVE discovered for the SAUSAGE (Security Analysis of Unix domain Socket usAGE in Android) paper that was accepted to EuroS&P 2022.  

I worked on this paper with [Mounir Elgharabawy](https://github.com/mounir-khaled), the one who discovered the vuln and wrote the Proof of Concept. His repo on the CVE can be seen [here](https://github.com/mounir-khaled/CVE-2021-25461).  

All details can be seen in the `.sh` file hosted on this repo.

File Snapshot


 [4.0K]  /data/pocs/13409c2d21bd3c92f1d357033428a8cc106b3f97
├── [ 506]  README.md
├── [1.1M]  samsung_apaservice_poc.sh
└── [830K]  socat

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!