• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Root ZTE Zmax Pro Official Root Discussion

Status
Not open for further replies.
jaykoerner said:
The difference here is comments that do not outline a failed attempt, asking for information needed for investigating a root exploit, suggesting ideas/updates to the status of the device. Complaint about the thread has zero to do with it and the entire point of mods is to manage the forum. What else do you expect mods todo? Even this comment is off topic and as such I have no issues with it being removed.
Click to expand...

Obviously this would have to be off topic by nature, what I'm saying is other comments that were related have been removed.
 
anubis2048 said:
Also, I already mentioned that CVE-2016-2503 could be exploited to gain root access on our device but people ignored my post and shit up the thread with KingRoot this and KingRoot that. If anybody wants root, they will look into the CVE vulnerablities of this device instead of hoping KingRoot will magically root for us.

Better yet, we could tip off KingRoot to the CVE and they could do the dirty work for us.
Click to expand...

Since you know our device is vulnerable to this, then maybe you can try to help develop a way to exploit it? I asked exactly what CVE is, and got directed to a site that only shows a list of the CVE vulnerabilities and when/if they were patched. So maybe you can help me there? If not, could someone either explain, or point me in the direction to read up on CVE vulnerabilities, and maybe I can help out more. I can do a lot with Android, but I've never tried to develop a root exploit yet.

Edit: has been explained a little better to me now. CVE is common vulnerability and exposure. It basically pertains to any vulnerability that is within Android itself that "could allow remote code execution". If I'm understanding correctly...


Edit 2: I'm also seeing that the afore mentioned CVE was patched with Android security level patch of 9/6/2016 or later. If you're running the b12 update as I am, the Android security patch says 11/01/2016. I'm guessing that means this CVE does those devices no good.
 
Last edited:
Now this pertains to helping get to root if info is found....iPhones use DFU mode. I'm not knowledgeable on DFU period. Anyone want to maybe look at iPhone DFU threads?
 
So is this cve vulnerability something we can use like maybe we can find a file manager that will let us in a back door perhaps?
 
What about ADUPS data anilization of Fota? Arent some devices rooted through Fota also a nonroot bloatware remover windows program. Says can freeze any app including system. Maybe can freeze the write protect apps???
 

Attachments

  • Screenshot_20170124-184613.png
    Screenshot_20170124-184613.png
    483.7 KB · Views: 131
Last edited:
A CVE is basically a report of a flaw inside of the android OS or the hardware it runs on.
CVE-2016-2503
Is just the name for a flaw in the GPU drivers on select Qualcomm devices. The ZTE Zmax Pro is vulnerable to this and if exploited you could gain root access and in theory, install supersu binaries.

KingRoot or maybe Messi would be able to take advantage of this flaw.
 
Powduh said:
Since you know our device is vulnerable to this, then maybe you can try to help develop a way to exploit it? I asked exactly what CVE is, and got directed to a site that only shows a list of the CVE vulnerabilities and when/if they were patched. So maybe you can help me there? If not, could someone either explain, or point me in the direction to read up on CVE vulnerabilities, and maybe I can help out more. I can do a lot with Android, but I've never tried to develop a root exploit yet.

Edit: has been explained a little better to me now. CVE is common vulnerability and exposure. It basically pertains to any vulnerability that is within Android itself that "could allow remote code execution". If I'm understanding correctly...


Edit 2: I'm also seeing that the afore mentioned CVE was patched with Android security level patch of 9/6/2016 or later. If you're running the b12 update as I am, the Android security patch says 11/01/2016. I'm guessing that means this CVE does those devices no good.
Click to expand...

I don't know how to write in C++ and even if I did, I don't know how to write code for OpenGl, which is what is used to exploit the flaw in the GPU drivers.If I knew how I wouldn't be telling everyone about the flaw and instead would be working on exploiting it.
 
Last edited:
I dont have access to pc but someone got fastboot working on another device by slight variation in command. Please see screenshot
 

Attachments

  • Screenshot_20170124-205556.png
    Screenshot_20170124-205556.png
    143.3 KB · Views: 185
Seems like all they are "enhancing” is the fort knox security.It just went from level 5 security to level impossible.I give it.I can do more with my $1200 12.9 inch ipad pro with 128gb of space WITHOUT root.
 
cyanidekid said:
I dont have access to pc but someone got fastboot working on another device by slight variation in command. Please see screenshot
Click to expand...
I'm not at a PC at the moment, but the vendor ID for our device should be 0X19D2 if someone would want to try that fastboot command. I think I tried this awhile back though without success.
 
Don't understand why so many people bothered updating... I've even heard that the updates make the phone even more buggy. Oh well, hopefully Messi can exploit 2503. CVE reports that it's not that hard to do if you know how to write basic apps.
 
Status
Not open for further replies.
Back
Top Bottom