CVE-2017-0411 PoC — Android Framework APIs 权限许可和访问控制问题漏洞

Source

Associated Vulnerability

Title:Android Framework APIs 权限许可和访问控制问题漏洞 (CVE-2017-0411)
Description:Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。Framework APIs是其中的一个用于创建框架的API组件。 Android 7.0和7.1.1版本中的Framework APIs存在提权漏洞。攻击者可借助本地恶意的应用程序利用该漏洞执行任意代码。

Description

CVE-2017-0411 PoC refered p0

Readme

PoC refered p0
A PoC of CVE-2017-0411

File Snapshot


 [4.0K]  /data/pocs/f5ec1c11f6e0db4af4d224012802903f7a40a648
├── [4.0K]  app
│   ├── [1.1K]  build.gradle
│   ├── [1.7K]  CMakeLists.txt
│   ├── [ 751]  proguard-rules.pro
│   └── [4.0K]  src
│       ├── [4.0K]  androidTest
│       │   └── [4.0K]  java
│       │       └── [4.0K]  com
│       │           └── [4.0K]  lulu
│       │               └── [4.0K]  changxinlu
│       │                   └── [4.0K]  arbitraryunmap
│       │                       └── [ 752]  ExampleInstrumentedTest.java
│       ├── [4.0K]  main
│       │   ├── [ 728]  AndroidManifest.xml
│       │   ├── [4.0K]  cpp
│       │   │   └── [1.7K]  native-lib.cpp
│       │   ├── [4.0K]  java
│       │   │   └── [4.0K]  com
│       │   │       └── [4.0K]  lulu
│       │   │           └── [4.0K]  changxinlu
│       │   │               └── [4.0K]  arbitraryunmap
│       │   │                   └── [5.1K]  MainActivity.java
│       │   └── [4.0K]  res
│       │       ├── [4.0K]  drawable
│       │       │   └── [5.5K]  ic_launcher_background.xml
│       │       ├── [4.0K]  drawable-v24
│       │       │   └── [1.8K]  ic_launcher_foreground.xml
│       │       ├── [4.0K]  layout
│       │       │   └── [ 806]  activity_main.xml
│       │       ├── [4.0K]  mipmap-anydpi-v26
│       │       │   ├── [ 272]  ic_launcher_round.xml
│       │       │   └── [ 272]  ic_launcher.xml
│       │       ├── [4.0K]  mipmap-hdpi
│       │       │   ├── [3.0K]  ic_launcher.png
│       │       │   └── [4.9K]  ic_launcher_round.png
│       │       ├── [4.0K]  mipmap-mdpi
│       │       │   ├── [2.0K]  ic_launcher.png
│       │       │   └── [2.8K]  ic_launcher_round.png
│       │       ├── [4.0K]  mipmap-xhdpi
│       │       │   ├── [4.5K]  ic_launcher.png
│       │       │   └── [6.9K]  ic_launcher_round.png
│       │       ├── [4.0K]  mipmap-xxhdpi
│       │       │   ├── [6.3K]  ic_launcher.png
│       │       │   └── [ 10K]  ic_launcher_round.png
│       │       ├── [4.0K]  mipmap-xxxhdpi
│       │       │   ├── [9.0K]  ic_launcher.png
│       │       │   └── [ 15K]  ic_launcher_round.png
│       │       └── [4.0K]  values
│       │           ├── [ 208]  colors.xml
│       │           ├── [  77]  strings.xml
│       │           └── [ 383]  styles.xml
│       └── [4.0K]  test
│           └── [4.0K]  java
│               └── [4.0K]  com
│                   └── [4.0K]  lulu
│                       └── [4.0K]  changxinlu
│                           └── [4.0K]  arbitraryunmap
│                               └── [ 395]  ExampleUnitTest.java
├── [ 546]  build.gradle
├── [  66]  config
├── [  73]  description
├── [4.0K]  gradle
│   └── [4.0K]  wrapper
│       ├── [ 53K]  gradle-wrapper.jar
│       └── [ 230]  gradle-wrapper.properties
├── [ 726]  gradle.properties
├── [5.2K]  gradlew
├── [2.2K]  gradlew.bat
├── [  23]  HEAD
├── [4.0K]  hooks
│   ├── [ 478]  applypatch-msg.sample
│   ├── [ 896]  commit-msg.sample
│   ├── [ 189]  post-update.sample
│   ├── [ 424]  pre-applypatch.sample
│   ├── [1.6K]  pre-commit.sample
│   ├── [1.2K]  prepare-commit-msg.sample
│   ├── [1.3K]  pre-push.sample
│   ├── [4.8K]  pre-rebase.sample
│   ├── [ 544]  pre-receive.sample
│   └── [3.5K]  update.sample
├── [4.0K]  info
│   └── [ 240]  exclude
├── [  38]  README.md
└── [  15]  settings.gradle

36 directories, 48 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!