sgayou/subaru-starlink-research sgayou/subaru-starlink-research

  • Stars
    star
    552
  • Rank 80,595 (Top 2 %)
  • Language
  • License
    MIT License
  • Created almost 6 years ago
  • Updated about 4 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
sgayou/subaru-starlink-research
github

sgayou

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Subaru StarLink persistent root code execution.

Jailbreaking Subaru StarLink

Rooting the latest generation of Harman head units running on newer Subaru vehicles.

See doc/README.md for the write-up.

CVE-2018-18203

A vulnerability in the update mechanism of Subaru StarLink head units 2017, 2018, and 2019 may give an attacker (with physical access to the vehicle's USB ports) the ability to rewrite the firmware of the head unit. This vulnerability is due to bugs in the signature checking implementation used when verifying specific update files. An attacker could potentially install persistent malicious head unit firmware and execute arbitrary code as the root user.

Jailbroken head unit

More Repositories

1

kindle-5.6.5-jailbreak

Kindle 5.6.5 exploitation tools.
Assembly
424
star
2

medfusion-4000-research

Medfusion 4000 security research & a MQX RCE.
Python
336
star
3

rbasefind

A firmware base address search tool.
Rust
331
star
4

kindle-factory-jailbreak

Kindle factory image jailbreak.
15
star
5

qdecant

QNX Condensed Filesystem Decondenser
Python
8
star