CVE-2013-4777

N/A

Description

A certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless uses init to create a /dev/socket/init_runit socket that listens for shell commands, which allows local users to gain privileges by interacting with a LocalSocket object.

CVE Details

CVSS v3.1 ScoreN/A

Published9/25/2013

Last Modified4/29/2026

Sourcenvd

Honeypot Sightings0

Affected Products

google:androidmotorola:defy_xt

Weaknesses (CWE)

CWE-264

References

https://plus.google.com/110348415484169880343/posts/5ofgPNrSu3J(cve@mitre.org)

https://plus.google.com/110348415484169880343/posts/5ofgPNrSu3J(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.