This CVE is adapted for Fujitsu Arrows NX F-01F with KitKat firmware (Android 4.4.2, build # V10R22A, kernel version 3.4.0). The original code is written by thinkycx.
The exp works on foresaid device only! It definitely won't work on any other smartphone without altering the memory addresses, structs etc. in the code. The same applies to earlier builds of F-01F, i.e. JellyBean ones. They could be easier to adapt though.
N.B.: It also partially patches fjsec LSM, so you could use LSM Trasher later to disable the rest of the protection.
Known issues:
- Sometimes it makes the phone reboot on "try to read..." operation - just wait some time (5 to 10 mins) after reboot and try again;
- It always makes the phone reboot, when done with the root shell (e.g., issue exit cmd or close the console window);
- Even if you manage to install
su, it will launch with a limited set of capabilities, because both fjsec and SELinux are in effect after the system restart.
Related documents (as per by the author):