製品・ソフトウェアに関する情報

JVN脆弱性詳細

BLU R1 HD デバイス上で稼動する Adups FOTA の com.adups.fota.sysoper におけるファイルを読まれる脆弱性

Title	BLU R1 HD デバイス上で稼動する Adups FOTA の com.adups.fota.sysoper におけるファイルを読まれる脆弱性
Summary	BLU R1 HD デバイス上で稼動する Adups FOTA の com.adups.fota.sysoper には、システムユーザとしてファイルを読まれる、書き込まれる、および削除される脆弱性が存在します。
Possible impacts	サードパーティのアプリケーションにより、システムユーザとしてファイルを読まれる、書き込まれる、および削除される可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Nov. 15, 2016, midnight
Registration Date	Feb. 6, 2017, 1:45 p.m.
Last Update	Feb. 6, 2017, 1:45 p.m.

Affected System

Adups

Adups FOTA

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-10136	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10136
National Vulnerability Database (NVD)
2	CVE-2016-10136	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10136

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-310	https://jvndb.jvn.jp/ja/cwe/CWE-310.html

ベンダー情報

No	Name	URL
Adups
1	Top Page	http://www.adups.com/index.php

その他

No	Name	URL
関連文書
1	KRYPTOWIRE DISCOVERS MOBILE PHONE FIRMWARE THAT TRANSMITTED PERSONALLY IDENTIFIABLE INFORMATION (PII) WITHOUT USER CONSENT OR DISCLOSURE	https://www.kryptowire.com/adups_security_analysis.html

Change Log

No	Changed Details	Date of change
0	[2017年02月06日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2016-10136

Summary	An issue was discovered on BLU R1 HD devices with Shanghai Adups software. The content provider named com.adups.fota.sysoper.provider.InfoProvider in the app with a package name of com.adups.fota.sysoper allows any app on the device to read, write, and delete files as the system user. In the com.adups.fota.sysoper app's AndroidManifest.xml file, it sets the android:sharedUserId attribute to a value of android.uid.system which makes it execute as the system user, which is a very privileged user on the device. This allows a third-party app to read, write, and delete files owned by the system user. The third-party app can modify the /data/system/users/0/settings_secure.xml file to add an app as a notification listener to be able to receive the text of notifications as they are received on the device. This also allows the /data/system/users/0/accounts.db to be read which contains authentication tokens for various accounts on the device. The third-party app can obtain privileged information and also modify files to obtain more privileges on the device.
Publication Date	Jan. 13, 2017, 6:59 p.m.
Registration Date	Jan. 26, 2021, 2:05 p.m.
Last Update	Nov. 21, 2024, 11:43 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:adups:adups_fota:-:::::::*

Related information, measures and tools

No	URL	タグ
1	http://www.securityfocus.com/bid/96854
2	http://www.securityfocus.com/bid/96854
3	https://www.kryptowire.com/adups_security_analysis.html	Technical Description Third Party Advisory
4	https://www.kryptowire.com/adups_security_analysis.html	Technical Description Third Party Advisory
5	https://www.nytimes.com/2016/11/16/us/politics/china-phones-software-security.html	Press/Media Coverage
6	https://www.nytimes.com/2016/11/16/us/politics/china-phones-software-security.html	Press/Media Coverage

Common Vulnerabilities List