CVEs-PoC/2012/CVE-2012-6422.md

### [CVE-2012-6422](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6422)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions (0666) for /dev/exynos-mem, which allows attackers to read or write arbitrary physical memory and gain privileges via a crafted application, as demonstrated by ExynosAbuse.

### POC

#### Reference
- http://forum.xda-developers.com/showthread.php?p=35469999
- http://forum.xda-developers.com/showthread.php?t=2051290
- http://www.securityweek.com/new-vulnerability-exposed-samsungs-android-devices

#### Github
- https://github.com/tangsilian/android-vuln