CVE-2020-0041 icon indicating copy to clipboard operation
CVE-2020-0041 copied to clipboard

Published 20 hours ago verified publisher icon j4nn

Update exploit.c for 901SO

Open nvsofts opened this issue 2 years ago • 2 comments

Tested on actual device.

nvsofts avatar May 03 '22 09:05 nvsofts

@nvsofts, Can you please share how to get the offsets from firmware?

ShujathMohd avatar May 03 '22 13:05 ShujathMohd

I used Ghidra to obtain address of each symbol.

start address    ffffff8008080000
selinux_enforcing    ffffff800a973000
memstart_addr    ffffff8009ad0e08
sysctl_table_root    ffffff800a25d380
proc_doulongvec_minmax    ffffff80080bef20
init_task    ffffff800a21c680
init_cred    ffffff800a22d808
pipefifo_fops    ffffff80094212d0

nvsofts avatar May 03 '22 14:05 nvsofts