Revision as of 15:35, 20 April 2022 edit Ingenuity (talk \| contribs) Edit filter managers, Autopatrolled, Administrators 85,793 edits Reverted edits by Wuseman (talk) Tag: Manual revert ← Previous edit		Revision as of 12:04, 29 June 2022 edit undo PhotographyEdits (talk \| contribs) Autopatrolled, Extended confirmed users, Page movers 13,443 edits →Security: Better grammar Tag: Visual edit Next edit →
Line 97: == Security == Up to [[Android 2.2]], Android was vulnerable to the ''RageAgainstTheCage'' [[Exploit (computer security)\|exploit]]. The adb [[Daemon (computing)\|daemon]] did not check for the return value of the [[setuid]] [[system call]] when [[dropping privileges]]. The exploit [[Fork (system call)\|forks]] processes until it fails due to the exhaustion of [[Process identifier\|process identifiers]]. When the daemon crashes and restarts, it ~~can't~~cannot start a new process with dropped privileges and keeps running as root. Then adb provided a root shell.<ref>{{Cite book\|last=Drake\|first=Joshua J.\|url=https://www.worldcat.org/oclc/875820167\|title=Android hacker's handbook\|date=2014\|publisher=Wiley\|others=Zach Lanier, Collin Mulliner, Pau Oliva, Stephen A. Ridley, Georg Wicherski\|isbn=978-1-118-60861-6\|___location=Indianapolis, IN\|pages=75\|oclc=875820167\|access-date=2021-09-26\|archive-date=2021-09-26\|archive-url=https://web.archive.org/web/20210926122022/https://www.worldcat.org/title/android-hackers-handbook/oclc/875820167\|url-status=live}}</ref> In 2017, a security vulnerability was disclosed that exploited ADB to take over the onboard [[modem]]. The attack required adb to be already enabled and authorized, although some workarounds were available.<ref>{{Cite web\|last=Mendelsohn\|first=Tom\|date=2017-01-09\|title=Google plugs severe Android vulnerability that exposed devices to spying\|url=https://arstechnica.com/information-technology/2017/01/google-plugs-severe-android-bootmode-vulnerability/\|url-status=live\|access-date=2021-09-10\|website=[[Ars Technica]]\|language=en-us\|archive-date=2021-09-10\|archive-url=https://web.archive.org/web/20210910135518/https://arstechnica.com/information-technology/2017/01/google-plugs-severe-android-bootmode-vulnerability/}}</ref> Various families of malware such as ADB.Miner, Ares, IPStorm, Fbot and Trinity have scanned the internet for public availability of the adb interface and installed malware on those devices.<ref>{{Cite web\|last=Cimpanu\|first=Catalin\|title=Android devices ensnared in DDoS botnet\|url=https://www.zdnet.com/article/android-devices-ensnared-in-ddos-botnet/\|url-status=live\|access-date=2021-09-10\|website=[[ZDNet]]\|language=en\|archive-date=2021-09-10\|archive-url=https://web.archive.org/web/20210910135518/https://www.zdnet.com/article/android-devices-ensnared-in-ddos-botnet/}}</ref> adb can also be used to remove [[malware]], by booting into [[safe mode]] and running the <code>adb uninstall</code> command.<ref>{{Cite news\|last=Schuman\|first=Evan\|title=This Vultur app takes malicious to the next level\|language=en\|work=[[Computerworld]]\|url=https://www.computerworld.com/article/3627326/this-vultur-app-takes-malicious-to-the-next-level.html\|access-date=2021-09-10\|archive-date=2021-09-10\|archive-url=https://web.archive.org/web/20210910135522/https://www.computerworld.com/article/3627326/this-vultur-app-takes-malicious-to-the-next-level.html\|url-status=live}}</ref>

Android Debug Bridge: Difference between revisions