Vulnerabilities > CVE-2017-13209 - Missing Authorization vulnerability in Google Android 8.0/8.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-68217907.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon. CVE-2017-13209. Dos exploit for Android platform |
| file | exploits/android/dos/43513.txt |
| id | EDB-ID:43513 |
| last seen | 2018-01-24 |
| modified | 2018-01-11 |
| platform | android |
| port | |
| published | 2018-01-11 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/43513/ |
| title | Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon |
| type | dos |
References
- http://www.securityfocus.com/bid/102415
- http://www.securityfocus.com/bid/102415
- http://www.securitytracker.com/id/1040106
- http://www.securitytracker.com/id/1040106
- https://source.android.com/security/bulletin/2018-01-01
- https://source.android.com/security/bulletin/2018-01-01
- https://www.exploit-db.com/exploits/43513/
- https://www.exploit-db.com/exploits/43513/