{
  "name" : "RageAgainstTheCage adb",
  "CVE" : [["CVE-2010-EASY","intrepidus-looking-at-c-skills"]],
  "Coordinated_disclosure" : "false",
  "Categories" : ["system"],
  "Severity" : "uncertain",
  "Details" : [["adb fails to check setuid return code and this can be caused to fail by the shell user already having RLIMIT_NPROC processes."]],
  "Discovered_by" : [["Sebastian Krahmer","thesnkchrmr-ratc"]],
  "Discovered_on" : [{"date":"2010-08-21","bound":"before","ref":"c-skills-droid2"}],
  "Submission" : [{"by" : "drt24", "on" : "2013-09-05"}],
  "Reported_on" : [],
  "Fixed_on" : [["2010-08-27","rageagainstthecage-adb-patch"]],
  "Fix_released_on" : [],
  "Affected_versions" : [["1.6_r1-2.2_r1","adb-setuid-bug-patch"]],
  "Affected_devices" : [["Droid2, backflip and evo","c-skills-droid2"]],
  "Affected_versions_regexp" : ["(1\\.[6-9]\\.[0-9])|(2\\.((1\\.[0-9])|(2\\.0)))"],
  "Affected_manufacturers" : [["all","rageagainstthecage-adb-patch"]],
  "Fixed_versions" : [["2.2.2 and greater","android-security-2010-EASY-patches"],["2.2_r8, 2.3_r1","rageagainstthecage-adb-patch"]],
  "references" : {
    "android-security-2010-EASY-patches" : {
      "url" : "https://groups.google.com/forum/#!topic/android-security-discuss/G6hyT7LU6bs",
      "archiveurl" : "http://archive.is/Rr9NW"
    },
    "rageagainstthecage-adb-patch" : {
      "url" : "https://android.googlesource.com/platform/system/core/+/44db990d3a4ce0edbdd16fa7ac20693ef601b723%5E%21/",
      "component" : "platform/system/core",
      "commit" : "44db990d3a4ce0edbdd16fa7ac20693ef601b723"
    },
    "rageagainstthecage-adb-backport-patch" : {
      "url" : "https://android.googlesource.com/platform/system/core/+/2ad6067ce491446ab22f59a363d36575a942f5c7%5E%21/",
      "component" : "platform/system/core",
      "commit" : "2ad6067ce491446ab22f59a363d36575a942f5c7"
    },
    "intrepidus-looking-at-c-skills" : {
      "url" : "https://intrepidusgroup.com/insight/2010/09/android-root-source-code-looking-at-the-c-skills/",
      "archiveurl" : "https://web.archive.org/web/20160914082939/https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2010/september/android-root-source-code-looking-at-the-c-skills/"
    },
    "thesnkchrmr-ratc" : {
      "url" : "http://thesnkchrmr.wordpress.com/2011/03/24/rageagainstthecage/",
      "archiveurl" : "https://perma.cc/V2FU-GEAA"
    },
    "openwall-ratc-source" : {
      "url" : "http://stealth.openwall.net/xSports/RageAgainstTheCage.tgz",
      "archiveurl" : "http://web.archive.org/web/20170213114450/stealth.openwall.net/xSports/RageAgainstTheCage.tgz"
    },
    "c-skills-droid2" : {
      "url" : "http://c-skills.blogspot.co.uk/2010/08/droid2.html",
      "archiveurl" : "https://perma.cc/2UJ5-M76N"
    },
    "adb-setuid-bug-patch" : {
      "url" : "https://android.googlesource.com/platform/system/core/+/dd7bc3319deb2b77c5d07a51b7d6cd7e11b5beb0%5E%21/",
      "component" : "platform/system/core",
      "commit" : "dd7bc3319deb2b77c5d07a51b7d6cd7e11b5beb0"
    }
  },
  "Surface": ["local", "system-call", "app"],
  "Vector": ["daemon-abusing"],
  "Target": ["system-component"],
  "Channel": ["app-execution"],
  "Condition": ["affected-app-installed"],
  "Privilege": ["root"]
}