CVE-2013-4777

Name of the Vulnerable Software and Affected Versions Android version 2.3.7 on the Motorola Defy XT phone

Description The issue concerns a specific configuration where the Android operating system uses init to create a socket that listens for shell commands, potentially allowing local users to gain privileges. This is achieved by interacting with a LocalSocket object.

Recommendations For Android 2.3.7 on the Motorola Defy XT phone, consider restricting access to the /dev/socket/init runit socket to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.