Security Advisory

CVE-2013-6124

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-08-31 10:00:00

Last updated 2024-08-06 17:29:43

Assigner mitre

State PUBLISHED

Description

The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as demonstrated by changing the permissions of an arbitrary file via an attack on the sensor-settings file.

← Browse all CVEs View on cve.org ↗