Exploit:AndroidOS/CVE-2011-1823

(?)

Encyclopedia entry
Updated: Jan 27, 2012 | Published: Jan 24, 2012

Aliases

Exploit.Linux.Lotoor.q

Kaspersky

Android.Exploit.GingerBreak.C (BitDefender)
Linux/Exploit.Lotoor.AJ trojan (ESET)
Exploit.Linux.Lotoor (Ikarus)
Linux/Exploit-Lotoor (McAfee)
AndroidOS_LOTOOR.E (Trend Micro)

Alert Level (?)
Severe

Antimalware protection details
Microsoft recommends that you download the latest definitions to get protected.

Detection last updated:
Definition: 1.121.1622.0
Released: Mar 15, 2012

Detection initially created:
Definition: 1.119.504.0
Released: Jan 24, 2012

Summary

Exploit:AndroidOS/CVE-2011-1823 is the detection for specially-crafted Android programs that attempt to exploit a vulnerability in the Android operating system to gain root privilege. The vulnerability is discussed in CVE-2011-1823.

Top

Symptoms

There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptoms.

Top

Technical Information (Analysis)

Installation

Exploit:AndroidOS/CVE-2011-1823 may be dropped and installed by Exploit:AndroidOS/GingerBreak.

Payload

Performs privileged operations

When run on a vulnerable device, Exploit:AndroidOS/CVE-2011-1823 gains administrator privilege, allowing it to perform operations with elevated privileges.

Analysis by Tim Liu

Top

Prevention

Take these steps to help prevent infection on your computer.

Top

Recovery

Install antivirus software for your mobile device. For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Top


	Provide feedback Please note: While your feedback is very important to us, we do not respond to individual submissions through this channel. Feedback, requests, or questions submitted through this form are monitored, however responses are not generated. If you require support, please visit the Safety & Security Center.