- Content source
- https://cybersecuritynews.com/android-17-root-1-click/
Read more here:A full-chain exploit dubbed “IonStack” demonstrates how a single malicious URL click can hand attackers complete control over an Android device.
The proof-of-concept by Nebula Security, described as the world’s first public Android 17 root demo, chains two zero-day vulnerabilities spanning Firefox and the Linux kernel to achieve remote code execution and privilege escalation without further user interaction.
IonStack exploits two previously unknown vulnerabilities:
The exploit chain works by first compromising the Firefox renderer process through the browser flaw, then pivoting to the underlying Linux kernel (which powers Android) to break out of sandbox restrictions entirely.
- Firefox 0-day: Affects all versions prior to v151.0.2, serving as the initial browser-based entry point when a victim visits or clicks a crafted URL.
- Linux kernel 0-day: A vulnerability present across mainstream Linux distributions for approximately 15 years, enabling the attacker to escalate from browser sandbox to full kernel-level control.
First-Ever 1- Click Android 17 Exploit Allows Attackers to Gain Full Control Over Your Android Phone
A full-chain exploit dubbed “IonStack” demonstrates how a single malicious URL click can hand attackers complete control over an Android device. The proof-of-concept by Nebula Security, described as the world’s first public Android 17 root demo, chains two zero-day vulnerabilities spanning...
cybersecuritynews.com