broadAnywhere:Broadcast组件权限绕过漏洞(Bug: 17356824)
Tags
| attack-pattern: | Python - T1059.006 |
Common Information
| Type | Value |
|---|---|
| UUID | d529bb31-3009-4f3f-b834-07983a4c7757 |
| Fingerprint | f0d5314764704a8f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 14, 2014, midnight |
| Added to db | Jan. 18, 2023, 7:39 p.m. |
| Last updated | Nov. 17, 2024, 7:44 p.m. |
| Headline | 360 核心安全技术博客 |
| Title | broadAnywhere:Broadcast组件权限绕过漏洞(Bug: 17356824) |
| Detected Hints/Tags/Attributes | 10/1/17 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://blogs.360.cn/post/broadanywhere-bug-17356824.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 20 | blogs.360.cn |
|
| Details | Domain | 1 | addaccountsettings.java |
|
| Details | Domain | 1 | pendingintentrecord.java |
|
| Details | Domain | 3 | google.android |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 11 | android.googlesource.com |
|
| Details | Domain | 4 | androidxref.com |
|
| Details | Domain | 4 | intent.java |
|
| Details | File | 1 | addaccountsettings.java |
|
| Details | File | 1 | pendingintentrecord.java |
|
| Details | File | 3 | intent.java |
|
| Details | Github username | 1 | retme7 |
|
| Details | Url | 1 | http://blogs.360.cn/360mobile/2014/11/14/broadanywhere-bug-17356824 |
|
| Details | Url | 1 | https://github.com/retme7/broadanywhere_poc_by_retme_bug_17356824 |
|
| Details | Url | 1 | http://blogs.360.cn/360mobile/2014/08/19/launchanywhere-google-bug-7699048 |
|
| Details | Url | 1 | https://android.googlesource.com/platform/packages/apps/settings |
|
| Details | Url | 1 | http://androidxref.com/4.4.4_r1/xref/frameworks/base/core/java/android/content/intent.java#6516 |