Skip to content

Commit 6852ac7

Browse files
hackerhouse-opensourcehackerhouse-opensource
committed
ZTE Blade Vantage Z839 Emode.APK android.uid.system LPE exploit
1 parent dbefc8e commit 6852ac7

File tree

2 files changed

+5
-5
lines changed

2 files changed

+5
-5
lines changed

README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -136,6 +136,6 @@ Exploits and proof-of-concept code from the team at Hacker House.
136136
|*winnuke2011.sh* | MS11-083 Win7/Vista/2008 ICMP refCount denial-of-service flaw |
137137
|*wysewig.py* | Wyse embedded XP remote SYSTEM command execution exploit |
138138
|*xclm-exploit.c* | Microchip XC local root exploit (Linux) (installed by defcon 26 attendees) |
139-
|*zte-emode.txt*| ZTE Z839 Android handsets Emode.APK android.uid.system LPE exploit|
139+
|*zte-emode.txt*| ZTE Blade Vantage Z839 Emode.APK android.uid.system LPE exploit |
140140

141141
These files are available under a Attribution-NonCommercial-NoDerivatives 4.0 International license.

zte-emode.txt

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
1-
ZTE Z839 Android handsets Emode.APK android.uid.system LPE exploit
2-
==================================================================
3-
ZTE Blade Vantage (Z839) Android 7.1.1 handsets contain an engineering mode APK that utilizes "Android Secret Codes"
1+
ZTE Blade Vantage Z839 Emode.APK android.uid.system LPE exploit
2+
===============================================================
3+
ZTE Blade Vantage (Z839) Android handsets running 7.1.1 contain an engineering mode that utilizes "Android Secret Codes"
44
for accessing hidden engineering functionality. Such hidden features are common for Android devices and perform
55
functions such as testing sensors and modem settings. Using the "secret codes", it is also possible for ZTE to obtain
66
root privileges on any device by installing "zteroot.apk" (must be signed by ZTE as AndroidOS checks signature and privs
@@ -213,7 +213,7 @@ Linux localhost 3.10.49-g24db3b3 #1 SMP PREEMPT Sun Aug 20 11:59:09 CST 2017 arm
213213

214214
The Janus vulnerability is patched in the latest version of Z839V1.0.0B13 - this flaw was tested against
215215
firmware version Z839V1.0.0B08. The Emode engineering access is present in the latest version but exploitation
216-
must be achieved through other means.
216+
must be achieved through other means as the Janus APK here will not load on a patched device.
217217

218218
-- Hacker Fantastic
219219
(https://hacker.house)

0 commit comments

Comments
 (0)