This website provides exploit demos for our CCS submission: The Misuse of Android Unix Domain Socket and Security Implications. List of our demos:
In summary, these vulnerabilities can be exploited to
Paper abstract: In this work, we perform the first systematic study in understanding the security properties of the usage of Android Unix domain socket by both apps and system daemons as an IPC (Inter-process Communication) mechanism, especially for cross-layer communication between the Java and the native layer. We propose a tool called SInspector to expose potential security vulnerabilities in the IPC usage through the process of identifying socket addresses, detecting authentication checks, and performing data flow analysis on the native code. Our in-depth analysis found some serious vulnerabilities in both apps and system daemons such as root privilege escalation and arbitrary file access, some of which we reported to the vendors. Based on our findings, we propose countermeasures and improved practices for utilizing Unix domain socket. |