CVE-2015-6640 PoC — Android 安全漏洞

Source

https://github.com/betalphafai/CVE-2015-6640

Associated Vulnerability

Title:Android 安全漏洞 (CVE-2015-6640)
Description:Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。 Android 5.1.1 LMY49F之前版本和2016-01-01之前6.0版本的kernel/sys.c文件中的‘prctl_set_vma_anon_name’函数中存在安全漏洞，该漏洞源于程序在系统升级时没有确保只有一个vma可访问。攻击者可借助特制的应用程序利用该漏洞获取权限或造成拒绝服务（vma列表损坏）。

Readme


[CVE-2015-6640]

poc by Edward Hung

https://source.android.com/security/bulletin/2016-01-01.html
https://android.googlesource.com/kernel/common/+/69bfe2d957d903521d32324190c2754cb073be15%5E%21/#F0

File Snapshot


 [4.0K]  /data/pocs/d0e3312f63fbb3b53e68e8e5ebfcea6ed895e8b4
├── [4.0K]  jni
│   ├── [ 159]  Android.mk
│   ├── [  70]  Application.mk
│   └── [2.0K]  main.c
├── [4.0K]  libs
│   └── [4.0K]  armeabi
│       └── [ 62K]  main
└── [ 198]  README.md

3 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!