CVE-2016-5195 icon indicating copy to clipboard operation
CVE-2016-5195 copied to clipboard

Published 20 hours ago verified publisher icon timwr

setresgid/setresuid failed

Open zdzicho0 opened this issue 8 years ago • 2 comments

Next phone: Huawei P8

Output:

MBP-Krzysztof:CVE-2016-5195 krzysiek$ adb shell /system/bin/run-as
uid /system/bin/run-as 2000
setresgid/setresuid failed
uid 2000
0 u:r:runas:s0
context 0 u:r:shell:s0
shell@hwALE-H:/ $ whoami
whoami
shell
shell@hwALE-H:/ $ id
id
uid=2000(shell) gid=2000(shell) groups=2000(shell),1004(input),1007(log),1011(adb),1015(sdcard_rw),1028(sdcard_r),3001(net_bt_admin),3002(net_bt),3003(inet),3006(net_bw_stats) context=u:r:shell:s0

zdzicho0 avatar Jan 03 '17 17:01 zdzicho0

study about the SELinux policies .. in short run-as donot have suid bit set in new android versions, in newer android versions SElinux policies are implemented as capabilities.

rosehgal avatar Jan 30 '17 15:01 rosehgal

So if it gives this error it means it's not vulnerable? or there's still a way to exploit the device? @r0hi7

elichai avatar Feb 12 '17 07:02 elichai