• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Root ZTE Zmax Pro Official Root Discussion

Status
Not open for further replies.
Powduh said:
Fair enough. However, I disagree with your statement saying marshmallow has no vulnerabilities. Other marshmallow devices can be rooted, however it may be that those device use other exploits?
Click to expand...
Those phones have the ability to install recovery either through fastboot, or download mode. This one doesn't. Even if we were able to set SELinux to permissive it wouldn't be nearly as easy to install TWRP. It could probably be pushed through adb, or even manually placed with a root file manager, but I don't know if it would stick. As far as I know nobody has gotten that far.

I'm positive this phone is rootable. There isn't a piece of hardware that can't be exploited. It's just not going to be as easy as a Samsung, Nexus, or HTC. We don't have enough information. There are a lot less people willing to take it on as well.
 
Let's be real here. Nobody likes hearing this but it's pretty damn obvious at this point.
It is very likely that this device will not be rooted within it's useful life-time.
Let's face the facts here. We're at a very bad disadvantage because we have no recovery tools. We have no emergency download mode. We don't even have bulk mode.

The only way to get root that I can think of is a CVE in Android 6.0.1. And even then, rooting/flashing recovery could brick our device. We know almost nothing about the bootloader other than it is a cousin to Fort Knox.

I say let's just be content with the Zmax Pro. If we had recovery tools of any kind that actually worked on this phone I would be singing a different tune, but it doesn't look so good right now. I will keep my eye out for any new discovered CVE's and post here, but that's pretty much all I will do for now.

We've been going at this for what? 5 months? Let's just let it go. The only developer on board is Messi and he needs to get his college work done. I love the Zmax Pro and I'd love to customize it, but we just can't.
 
Last edited:
I agree. Glitching it through adb is the only thing left I can think of. That could take months, and we don't have enough information to know what would work if we did gain root privileges that way.
 
Anubis... Why u said we dont have download mode... Cause mine access download mode and my afb recognized the device... What u talking about ?
 
jesellopez said:
Anubis... Why u said we dont have download mode... Cause mine access download mode and my afb recognized the device... What u talking about ?
Click to expand...
Oh cool, what tool are you using? QPST and all of the other Qualcomm tools don't work. Do you have a recovery tool?

ADB is useless because it's neutered just like fastboot. You can't even reboot to emergency download mode. Not download mode but qhusb bulk mode.
 
anubis2048 said:
Let's be real here. Nobody likes hearing this but it's pretty damn obvious at this point.
It is very likely that this device will not be rooted within it's useful life-time.
Let's face the facts here. We're at a very bad disadvantage because we have no recovery tools. We have no emergency download mode. We don't even have bulk mode.

The only way to get root that I can think of is a CVE in Android 6.0.1. And even then, rooting/flashing recovery could brick our device. We know almost nothing about the bootloader other than it is a cousin to Fort Knox.

I say let's just be content with the Zmax Pro. If we had recovery tools of any kind that actually worked on this phone I would be singing a different tune, but it doesn't look so good right now. I will keep my eye out for any new discovered CVE's and post here, but that's pretty much all I will do for now.

We've been going at this for what? 5 months? Let's just let it go. The only developer on board is Messi and he needs to get his college work done. I love the Zmax Pro and I'd love to customize it, but we just can't.
Click to expand...
i finished my exams this tuesday,been playing with the phone in ftm mode today , there is an enabled adb interface in this mode but unfortunately the selinux is still enforcing so that doesn't help..
 
I create a .bin file of my rom.. then put my phone on download mode and flash .bin file whit custom recovery messi provide.. and my phone stuck on zte.. the flash restore and every normal again..
 
messi2050 said:
i finished my exams this tuesday,been playing with the phone in ftm mode today , there is an enabled adb interface in this mode but unfortunately the selinux is still enforcing so that doesn't help..
Click to expand...
Do you know how to write and compile Android Apps? There's a CVE with the GPU drivers on our device that could be exploited to gain root. If I'm not mistaken I think it's CVE-2016-2503. I think you need to use the OpenGL library to exploit the flaw.
 
anubis2048 said:
Do you know how to write and compile Android Apps? There's a CVE with the GPU drivers on our device that could be exploited to gain root. If I'm not mistaken I think it's CVE-2016-2503. I think you need to use the OpenGL library to exploit the flaw.
Click to expand...
i only know some basic c++/c# from compiling cm.
 
anubis2048 said:
Damn... Welp, I'm stumped. Can't think of anything else. I guess we could go on XDA and beg someone to look into our device. You know anybody we should ask?
Click to expand...
i doubt anyone will be intersted in looking into it , a device with no fastboot mode / no download mode and a mystrious ftm mode won't attract the developers , i only see two ways to go into
1/ edl mode
2/ a bug in the mm system itself
 
Most of the information you need for the exploit is here. Building the interface and APK is pretty straight forward through the SDK. I'm fairly certain the drivers were patched before these phones were even released.
 

Attachments

Just stay in mind guys.... Our phone is the same as xioami brand phones.. Same produced company etc.. so its means that all xioamy tools have to work on our devices....
 
Allright.... I found something good for all of us.. the list of all devices who use the same Chipset... So we got now time to check if one of this different phone get root... If does our Zte can be root too... So start learning and search for this each devices forums...




HTC One A9

16GB

€315

HTC One A9

32GB

€258

ZTE Axon Max



Alcatel Idol 4

€199

ZTE Nubia Z11 mini

NX529J

€162

Motorola Moto G4 Plus

2GB 32GB

€220

Motorola Moto G4 Plus

2GB 16GB

€218

Huawei G9 Lite

AL00

€166

Motorola Moto G4

€173

Huawei Honor 5A

AL00

€115

Samsung Galaxy C5

C5000 64GB Dual

€305

Samsung Galaxy C5

C5000 32GB Dual

€288

ZTE Axon 7 mini

€249

ZTE Nubia Z11 mini

€220

Coolpad Max



AGM X1

€264

Here the link..

https://www.kimovil.com/en/list-smartphones-by-processor/qualcomm-snapdragon-617-msm8952
 
The processor isn't the key to rooting the phone. If this was an HTC you could just go to their website and request the unlock key for the bootloader.
 
anubis2048 said:
Let's be real here. Nobody likes hearing this but it's pretty damn obvious at this point.
It is very likely that this device will not be rooted within it's useful life-time.
Let's face the facts here. We're at a very bad disadvantage because we have no recovery tools. We have no emergency download mode. We don't even have bulk mode.

The only way to get root that I can think of is a CVE in Android 6.0.1. And even then, rooting/flashing recovery could brick our device. We know almost nothing about the bootloader other than it is a cousin to Fort Knox.

I say let's just be content with the Zmax Pro. If we had recovery tools of any kind that actually worked on this phone I would be singing a different tune, but it doesn't look so good right now. I will keep my eye out for any new discovered CVE's and post here, but that's pretty much all I will do for now.

We've been going at this for what? 5 months? Let's just let it go. The only developer on board is Messi and he needs to get his college work done. I love the Zmax Pro and I'd love to customize it, but we just can't.
Click to expand...


Those cves are patched in b12
 
Status
Not open for further replies.
Back
Top Bottom