I've released an article about the different app-based Exynos exploit patches and why/how they d ...
Posted on 2012-12-18, 28 comments, 164 +1's, imported from Google+/Chainfire

NOTICE: This content was originally posted to Google+, then imported here. Some formatting may be lost, links may be dead, and images may be missing.

... on't work ... recommended reading.


[2012.12.18] Why Exynos exploit patches may not work as expected + demo app - xda-developers

+1164
Nathan Jones commented on 2012-12-18 at 19:58:

Thanx, great article

Al M. commented on 2012-12-18 at 20:30:

Thanks man. Really great article from someone who really is on our side.

;-)

Ancel ROBINSON commented on 2012-12-18 at 20:31:

Thanks for all you do.

Ancel ROBINSON commented on 2012-12-18 at 20:33:

Good question

Roberto Radaelli commented on 2012-12-18 at 20:50:

Avast tells me Exynos abuse is a trojan and asks me to uninstall, what should I do? (my noobness has no limits)

Ancel ROBINSON commented on 2012-12-18 at 20:53:

Chainfire, is there a particular place to post questions about Exynos apk?

denis sorn commented on 2012-12-18 at 21:08:

Thanks.

Brent Foster commented on 2012-12-18 at 21:20:

Thanks for looking out for the community you're a saint man

Bjørn Helge Eldevik commented on 2012-12-18 at 21:28:

Thanks Chainfire, you blocked the hole! Seems Supercurio copied your code in his latest version.

Adnan Majeed commented on 2012-12-18 at 21:35:

Great work bro. Keep it yo.

Chainfire commented on 2012-12-18 at 21:39:

+Bjørn Helge Eldevik Without even looking at it or testing it, I'm guessing he is delaying the loading of other programs (which only works in very specific case) by making his receiver blocking. Which in some cases works - but in no way does it change the fact that his method is fundamentally flawed, and it still leaves holes left and right. 

I have no time to look at it now, maybe tomorrow !

Giuliano Peretti commented on 2012-12-18 at 21:53:

But what about perseus kernel that has patch built inside?

Chainfire commented on 2012-12-18 at 23:27:

+Giuliano Peretti if you read the article you will find it actually mentions the kernels

Timothy Pleines commented on 2012-12-18 at 23:31:

I will do what I can to get a few more people to read this, right now the media has them all in a frenzy. I am not very popular on the internet but I will retweet and all that nonsense.

Joshua Brindle commented on 2012-12-19 at 01:25:

SE Android allows us to mitigate this completely. I'm in the process of bringing SE Android up on a Note 2 which has /dev/exynos-mem and am writing the policy very carefully to only allow things that absolutely need access. http://selinuxproject.org/page/SEAndroid if you haven't heard of it...

Giuliano Peretti commented on 2012-12-19 at 07:26:

+Chainfire

Sorry but I read " We're going to talk about three solutions here:RyanZA's ExynosMemFixSupercurio's Voodoo Anti ExynosMemAbuse v0.6Chainfire's ExynosAbuse APK" nothing about perseus kernel, and searched but nothing, maybe my fault 

Tomi Jenson commented on 2012-12-19 at 08:55:

+Giuliano Peretti I think what he means is that the real fix is using custom kernel that already patch the exploit

Chainfire commented on 2012-12-19 at 09:42:

+Giuliano Peretti If I use the browser's search function to search for kernel in the page, on line three, I find: "the only true solution is a kernel fix"... seems clear to me.

Shiraz Adil commented on 2012-12-19 at 15:13:

Thanks for the article and the patch Chainfire. Good read. With any luck Samsung will respond quickly.

Paul Hedderly commented on 2012-12-19 at 17:44:

+Shiraz Adil : Dont be holding your breath...

salvatore corallo commented on 2012-12-20 at 06:52:

hello, how can I delete the exploited patch that I installed and rooted my phone? Thanks

John ara commented on 2012-12-23 at 09:02:

So if in dev folder i don't have the exynos folder, i'm not exposed? Thank's.

Krishna Reddy Dumpala commented on 2012-12-24 at 04:09:

I have updated my s2 to jellybean with you totiorials thanks

Chainfire commented on 2013-01-04 at 14:57:
Lim Jun Qi commented on 2013-02-01 at 04:43:

After I updated to 4.1

2 it cant work anymore

Patrick Chui commented on 2013-04-03 at 21:11:

i need help,my brother!i pressed the"one click secure exploit patch" with my S2.....camera disabled!please teach me how to fix,i beg you,my brother!thx a lot

Michal Nývlt commented on 2016-03-17 at 18:24:

Clash of clans

Hhhhhh+hhhh+hhhhh+h+hhhh+hh++h

Michal Nývlt commented on 2016-03-17 at 18:25:

Nu bubbh

This post is over a month old, commenting has been disabled.