Zhuowei Zhang on Nostr: Tom Hebb of Meta Red Team X found a nifty Android elevation of privilege exploit: ...
Tom Hebb of Meta Red Team X found a nifty Android elevation of privilege exploit: inject a "\n" into Zygote's arguments to take on the privileges of any installed app.
https://rtx.meta.security/exploitation/2024/06/03/Android-Zygote-injection.html
... and the only reason I heard about it is that Oxygen Forensics (likely) implemented it in their latest update to extract app data for all Android 9-14 devices.
https://oxygenforensics.com/uploads/press_kit/OFDv170ReleaseNotes.pdf
https://rtx.meta.security/exploitation/2024/06/03/Android-Zygote-injection.html
... and the only reason I heard about it is that Oxygen Forensics (likely) implemented it in their latest update to extract app data for all Android 9-14 devices.
https://oxygenforensics.com/uploads/press_kit/OFDv170ReleaseNotes.pdf