Android master key漏洞

浏览： ℃

字体：大中小

发布时间：2013-12-17 09:37:36

来源：

我也来说说android master key 漏洞，官方称为ANDROID-8219321。

先是在看雪上看到android master key的漏洞,这个号称可以控制95%以上的

android手机（理论上会影响2013年5月以前的android系统，大概是4.3之前的android）。So crazy!不得了，赶紧研究一下。主要参考了以下文章：

http://bbs.pediy.com/showthread.php?p=1197239

http://www.kanxue.com/bbs/showthread.php?t=175129

先看看2013年3月和5月官方给出的说法是

3月：

Improper installation of unsigned code

ID: ANDROID-8219321

Severity: High

Affected versions: Android 2.0 and greater

An inconsistency in the handling of zipfiles during application installation may lead to the installation andexecution of unsigned code in a privileged context.

This issue will be publicly disclosed in 90days. A CTS test will be included in the next CTS release.

5月：

Insertion of arbitrary code withoutchanging package signature due to incorrect parsing of APKs (update to previousbulletin)

First published: March 4th, 2013

Last Updated: May 31st, 2013

ID: ANDROID-8219321

Severity: High

Affected Android Versions: all

Arbitrary code can be inserted into an APKand pass signature verification due to incorrect parsing of APKs. A maliciouslycrafted classes.dex can be inserted before a legitimately signed classes.dex inan APK. Signature verification will be performed on the second, legitimateclasses.dex, but the first, malicious classes.dex is installed for applicationuse.

Update: This issue will be publiclypresented at Blackhat 2013. Please seehttp://www.blackhat.com/us-13/briefings.html#Forristal for more details. Atthat time, we expect active public exploitation of this issue outside of GooglePlay.