Jump to content


Photo

[ROOT] Motoshare 2: Old Bug, New Exploit


  • Please log in to reply
985 replies to this topic

#261 rlewis312010

rlewis312010

    Member

  • Members
  • PipPip
  • 111 posts

Posted 23 April 2013 - 08:31 AM

Remnants from the old republic.  That's why I want to see the output from those two commands. I suspect you'll be doing a system.img flash shortly, as well.

When I ran it all, I ended up with the # logo and SU, it even said binaries need updating.  I did not run those commands you gave (irrelevent as I FDR'ed and will FXZ later today).  However, the # said binaries needed updating.  I went to update and it said it could not be done.  Rootchecker then said "Not rooted" and TB could not get Su either.  I copied/pasted everything from the hardware button to taking oem out of xml.  To be clear, where it sais <oem>, delete it all inside so it shows <> (arrows remain)...correct?  Also, is there a corrected xml already that anyone has?  Would save some time.  I figure I COULD take the preinstall and system.img out of the FXZ then push those easy by themselves but a personal preference is to absolutely FXZ it all.  Thanks for all you do and have done Sam.  I am bipolar, don't take my rants personally;-)  Good mood, bad mood, hypo mania, trending toward depression.  A roller coaster some may know but a lot do not even imagine.  Take this as an "I apologize for ranting" statement;-)



#262 rlewis312010

rlewis312010

    Member

  • Members
  • PipPip
  • 111 posts

Posted 23 April 2013 - 08:32 AM

It seems some people are having problems with the part requiring pressing a hardware button.

 

I've uploaded a new version of the exploit that will cause the phone to vibrate when that stage has competed successfully. As the instructions now state, don't press enter to continue with the exploit until your device has vibrated. That will hopefully fix all the problems.

 

The updated exploit also uninstalls old versions of Superuser.apk if it was previously installed on the system partition instead of as a normal app.

You hear it ALL the time, but you are awesome. 



#263 jgattonii

jgattonii

    Member

  • Members
  • PipPip
  • 32 posts
  • Current Device(s):Droid Bionic

Posted 23 April 2013 - 08:32 AM

Hi all.  Still not able to mount Linux Share even from home. 

 

Here's my ifconfig:

ubuntu@ubuntu:~$ ifconfig
eth0      Link encap:Ethernet  HWaddr b8:ca:3a:d3:6d:29  
          inet6 addr: fe80::baca:3aff:fed3:6d29/64 Scope:Link
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:11146 errors:0 dropped:1 overruns:0 frame:0
          TX packets:8401 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:14614246 (14.6 MB)  TX bytes:849627 (849.6 KB)
          Interrupt:20 Memory:f7e00000-f7e20000

eth1      Link encap:Ethernet  HWaddr f4:b7:e2:3f:e5:78  
          inet addr:192.168.0.2  Bcast:192.168.0.255  Mask:255.255.255.0
          inet6 addr: fe80::f6b7:e2ff:fe3f:e578/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:4963 errors:0 dropped:0 overruns:0 frame:2251
          TX packets:4452 errors:30 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:5164335 (5.1 MB)  TX bytes:604671 (604.6 KB)
          Interrupt:17

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:756 errors:0 dropped:0 overruns:0 frame:0
          TX packets:756 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:70683 (70.6 KB)  TX bytes:70683 (70.6 KB)

ubuntu@ubuntu:~$
 

 Bionic Add Storage -

Host IP - 192.168.0.2

Domain - WORKGROUP

folder - share

user - guest

password - I'm sure I'm typing it correctly

 

Error msg_The information you entered is incorrect.  Please confirm your information and try again.

 

Here's the info prior to that:

ubuntu@ubuntu:~$ sudo apt-get install ia32-libs
Reading package lists... Done
Building dependency tree       
Reading state information... Done
E: Unable to locate package ia32-libs
ubuntu@ubuntu:~$ mkdir /tmp/share
ubuntu@ubuntu:~$ sudo apt-get install samba
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following extra packages will be installed:
  tdb-tools
Suggested packages:
  openbsd-inetd inet-superserver smbldap-tools ldb-tools
The following NEW packages will be installed:
  samba tdb-tools
0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
Need to get 4,130 kB of archives.
After this operation, 23.0 MB of additional disk space will be used.
Do you want to continue [Y/n]? y
Get:1

Please Login or Register to see this Hidden Content

quantal/main samba i386 2:3.6.6-3ubuntu5 [4,107 kB]
Get:2

Please Login or Register to see this Hidden Content

quantal/main tdb-tools i386 1.2.10-2 [22.8 kB]
Fetched 4,130 kB in 28s (147 kB/s)                        
Preconfiguring packages ...
Selecting previously unselected package samba.
(Reading database ... 161209 files and directories currently installed.)
Unpacking samba (from .../samba_2%3a3.6.6-3ubuntu5_i386.deb) ...
Selecting previously unselected package tdb-tools.
Unpacking tdb-tools (from .../tdb-tools_1.2.10-2_i386.deb) ...
Processing triggers for ureadahead ...
Processing triggers for ufw ...
Processing triggers for man-db ...
Setting up samba (2:3.6.6-3ubuntu5) ...
Generating /etc/default/samba...
update-alternatives: using /usr/bin/smbstatus.samba3 to provide /usr/bin/smbstatus (smbstatus) in auto mode
smbd start/running, process 6594
nmbd start/running, process 6630
Setting up tdb-tools (1.2.10-2) ...
update-alternatives: using /usr/bin/tdbbackup.tdbtools to provide /usr/bin/tdbbackup (tdbbackup) in auto mode
Processing triggers for ureadahead ...
Processing triggers for ufw ...
ubuntu@ubuntu:~$ sudo gedit /etc/samba/smb.conf
ubuntu@ubuntu:~$ sudo useradd guest -m -G users
ubuntu@ubuntu:~$ sudo passwd guest
Enter new UNIX password:
Retype new UNIX password:
passwd: password updated successfully
ubuntu@ubuntu:~$ sudo restart smbd
smbd start/running, process 6750
ubuntu@ubuntu:~$ cd /tmp/share
ubuntu@ubuntu:/tmp/share$ wget

Please Login or Register to see this Hidden Content


--2013-04-23 16:35:21-- 

Please Login or Register to see this Hidden Content


Resolving vulnfactory.org (vulnfactory.org)... 199.188.204.9
Connecting to vulnfactory.org (vulnfactory.org)|199.188.204.9|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 3304852 (3.2M) [application/x-tar]
Saving to: `motoshare2.tgz'

100%[=================>] 3,304,852    161K/s   in 20s     

2013-04-23 16:35:41 (159 KB/s) - `motoshare2.tgz' saved [3304852/3304852]

ubuntu@ubuntu:/tmp/share$ tar xvf motoshare2.tgz
adb.linux
adb.osx
busybox
pwn
run.sh
su
Superuser.apk
ubuntu@ubuntu:/tmp/share$ sudo chmod 755 run.sh
ubuntu@ubuntu:/tmp/share$ ifconfig
 

 Please help!



#264 bigtex52

bigtex52

    n00b

  • Members
  • Pip
  • 13 posts
  • Twitter:@STM8TR
  • LocationDallas

Posted 23 April 2013 - 08:33 AM

Now I can't get it to respond.

ubuntu@ubuntu:~$ sudo ./adb.linux shell ls -l /system/bin/su*
sudo: ./adb.linux: command not found

 

It was responding earlier and I closed the terminal window.



#265 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:36 AM

It seems some people are having problems with the part requiring pressing a hardware button.

 

I've uploaded a new version of the exploit that will cause the phone to vibrate when that stage has competed successfully. As the instructions now state, don't press enter to continue with the exploit until your device has vibrated. That will hopefully fix all the problems.

 

The updated exploit also uninstalls old versions of Superuser.apk if it was previously installed on the system partition instead of as a normal app.

 

You da man!  Thanks for that.


Non potest esse nisi unus


#266 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:37 AM

When I ran it all, I ended up with the # logo and SU, it even said binaries need updating.  I did not run those commands you gave (irrelevent as I FDR'ed and will FXZ later today).  However, the # said binaries needed updating.  I went to update and it said it could not be done.  Rootchecker then said "Not rooted" and TB could not get Su either.  I copied/pasted everything from the hardware button to taking oem out of xml.  To be clear, where it sais <oem>, delete it all inside so it shows <> (arrows remain)...correct?  Also, is there a corrected xml already that anyone has?  Would save some time.  I figure I COULD take the preinstall and system.img out of the FXZ then push those easy by themselves but a personal preference is to absolutely FXZ it all.  Thanks for all you do and have done Sam.  I am bipolar, don't take my rants personally;-)  Good mood, bad mood, hypo mania, trending toward depression.  A roller coaster some may know but a lot do not even imagine.  Take this as an "I apologize for ranting" statement;-)

 

No, do not leave the <>.  Remove the whole line.


Non potest esse nisi unus


#267 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:39 AM

Now I can't get it to respond.

ubuntu@ubuntu:~$ sudo ./adb.linux shell ls -l /system/bin/su*
sudo: ./adb.linux: command not found

 

It was responding earlier and I closed the terminal window.

 

cd to the share dir ;)


Non potest esse nisi unus


#268 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:40 AM

Hi all.  Still not able to mount Linux Share even from home. 

 

Here's my ifconfig:

ubuntu@ubuntu:~$ ifconfig
eth0      Link encap:Ethernet  HWaddr b8:ca:3a:d3:6d:29  
          inet6 addr: fe80::baca:3aff:fed3:6d29/64 Scope:Link
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:11146 errors:0 dropped:1 overruns:0 frame:0
          TX packets:8401 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:14614246 (14.6 MB)  TX bytes:849627 (849.6 KB)
          Interrupt:20 Memory:f7e00000-f7e20000

eth1      Link encap:Ethernet  HWaddr f4:b7:e2:3f:e5:78  
          inet addr:192.168.0.2  Bcast:192.168.0.255  Mask:255.255.255.0
          inet6 addr: fe80::f6b7:e2ff:fe3f:e578/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:4963 errors:0 dropped:0 overruns:0 frame:2251
          TX packets:4452 errors:30 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:5164335 (5.1 MB)  TX bytes:604671 (604.6 KB)
          Interrupt:17

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:756 errors:0 dropped:0 overruns:0 frame:0
          TX packets:756 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:70683 (70.6 KB)  TX bytes:70683 (70.6 KB)

ubuntu@ubuntu:~$
 

 Bionic Add Storage -

Host IP - 192.168.0.2

Domain - WORKGROUP

folder - share

user - guest

password - I'm sure I'm typing it correctly

 

Error msg_The information you entered is incorrect.  Please confirm your information and try again.

 

Here's the info prior to that:

ubuntu@ubuntu:~$ sudo apt-get install ia32-libs
Reading package lists... Done
Building dependency tree       
Reading state information... Done
E: Unable to locate package ia32-libs
ubuntu@ubuntu:~$ mkdir /tmp/share
ubuntu@ubuntu:~$ sudo apt-get install samba
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following extra packages will be installed:
  tdb-tools
Suggested packages:
  openbsd-inetd inet-superserver smbldap-tools ldb-tools
The following NEW packages will be installed:
  samba tdb-tools
0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
Need to get 4,130 kB of archives.
After this operation, 23.0 MB of additional disk space will be used.
Do you want to continue [Y/n]? y
Get:1

Please Login or Register to see this Hidden Content

quantal/main samba i386 2:3.6.6-3ubuntu5 [4,107 kB]
Get:2

Please Login or Register to see this Hidden Content

quantal/main tdb-tools i386 1.2.10-2 [22.8 kB]
Fetched 4,130 kB in 28s (147 kB/s)                        
Preconfiguring packages ...
Selecting previously unselected package samba.
(Reading database ... 161209 files and directories currently installed.)
Unpacking samba (from .../samba_2%3a3.6.6-3ubuntu5_i386.deb) ...
Selecting previously unselected package tdb-tools.
Unpacking tdb-tools (from .../tdb-tools_1.2.10-2_i386.deb) ...
Processing triggers for ureadahead ...
Processing triggers for ufw ...
Processing triggers for man-db ...
Setting up samba (2:3.6.6-3ubuntu5) ...
Generating /etc/default/samba...
update-alternatives: using /usr/bin/smbstatus.samba3 to provide /usr/bin/smbstatus (smbstatus) in auto mode
smbd start/running, process 6594
nmbd start/running, process 6630
Setting up tdb-tools (1.2.10-2) ...
update-alternatives: using /usr/bin/tdbbackup.tdbtools to provide /usr/bin/tdbbackup (tdbbackup) in auto mode
Processing triggers for ureadahead ...
Processing triggers for ufw ...
ubuntu@ubuntu:~$ sudo gedit /etc/samba/smb.conf
ubuntu@ubuntu:~$ sudo useradd guest -m -G users
ubuntu@ubuntu:~$ sudo passwd guest
Enter new UNIX password:
Retype new UNIX password:
passwd: password updated successfully
ubuntu@ubuntu:~$ sudo restart smbd
smbd start/running, process 6750
ubuntu@ubuntu:~$ cd /tmp/share
ubuntu@ubuntu:/tmp/share$ wget

Please Login or Register to see this Hidden Content


--2013-04-23 16:35:21-- 

Please Login or Register to see this Hidden Content


Resolving vulnfactory.org (vulnfactory.org)... 199.188.204.9
Connecting to vulnfactory.org (vulnfactory.org)|199.188.204.9|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 3304852 (3.2M) [application/x-tar]
Saving to: `motoshare2.tgz'

100%[=================>] 3,304,852    161K/s   in 20s     

2013-04-23 16:35:41 (159 KB/s) - `motoshare2.tgz' saved [3304852/3304852]

ubuntu@ubuntu:/tmp/share$ tar xvf motoshare2.tgz
adb.linux
adb.osx
busybox
pwn
run.sh
su
Superuser.apk
ubuntu@ubuntu:/tmp/share$ sudo chmod 755 run.sh
ubuntu@ubuntu:/tmp/share$ ifconfig
 

 Please help!

 

You're trying to connect on the bionic before you have the share set up?


Non potest esse nisi unus


#269 bigv5150

bigv5150

    Member

  • Members
  • PipPip
  • 150 posts
  • LocationDirty Jerzey
  • Current Device(s):Droid Maxx

Posted 23 April 2013 - 08:40 AM

Well, now.  This is amazing.

 

I've followed each and every step around 10 times now, trying with the 32-bit Linux distro. linked in the OP.  Each time everything goes perfectly, takes about the expected amount of time and Motoshare tells me everything is done, but for some reason the phone never actually roots.  To ensure I covered all of the bases I even factory reset the phone to remove any older .apk builds hovering about in storage, but still no root.

 

The OS is detecting the device with no problems, everything copies and runs, but it just won't root.

 

Any advice?

I had the same problem everything went through the phone rebooted the last set of instructions are a little confusing when you have to press a hardwarre button and then reboot.  first time I didn't get root either.  I did it again and hit the hardware button after the phone rebooted the first time then hit enter and the script will make it reboot again.  After this time I had root it seems more than a few like me were hitting the hardware button to soon.  This may or may not be the problem but if the entire process went through I suspect this is it.



#270 JustAGuy

JustAGuy

    This is only a test

  • Dedicated Supporter
  • PipPipPipPipPip
  • 4,258 posts
  • LocationSouthern New Hampshire
  • Current Device(s):Pixel 2 XL, Z300M, Nexus 7

Posted 23 April 2013 - 08:41 AM

Now I can't get it to respond.

ubuntu@ubuntu:~$ sudo ./adb.linux shell ls -l /system/bin/su*
sudo: ./adb.linux: command not found

 

It was responding earlier and I closed the terminal window.

Edit never mind.


Pixel 2 XL, Pixel XL, Nexus 6, Nexus 5, Nexus 7,  Samsung GS3, Bionic, OG Droid, SCH-i760, a flip phone or two, and a few others.


#271 livinginkaos

livinginkaos

    I don't know what I'm doing anymore.....

  • Administrator
  • 15,282 posts
  • Google+:Hangouts - livinginkaos@gmail.com
  • LocationOregon
  • Current Device(s):Samsung S8+ / Pixel XL 128gb / iPhone 7+ 256gb / iPad Pro 12.9" / Samsung Chromrbook Plus / Pixel C / Nexus 6p 128gb / Nexus 6 / Nexus 6 on Fi / Nexus 9 / Moto 360^2 / Nvidia Shield TV Pro / Nvidia Shield Tablet / HTC EVODesign on FreedomPop / Chromecast / Surface Pro 3 i7 / Samsung Tab Pro 12.2 / Lenovo Win8 Tab / Eee Slate / '13 Nexus 7

Posted 23 April 2013 - 08:43 AM

It seems some people are having problems with the part requiring pressing a hardware button.

 

I've uploaded a new version of the exploit that will cause the phone to vibrate when that stage has competed successfully. As the instructions now state, don't press enter to continue with the exploit until your device has vibrated. That will hopefully fix all the problems.

 

The updated exploit also uninstalls old versions of Superuser.apk if it was previously installed on the system partition instead of as a normal app.

Nice !  


b2wvCBn.png

Sig by livinginkaos
Samsung S8+ / Pixel XL 128gb / iPhone 7+ 256gb / iPad Pro 12.9" / Samsung Chromrbook Plus / Pixel C / Nexus 6p 128gb / Nexus 6 / Nexus 6 on Fi / Nexus 9 / Moto 360^2 / Nvidia Shield TV Pro / Nvidia Shield Tablet / HTC EVODesign on FreedomPop / Chromecast / Surface Pro 3 i7 / Samsung Tab Pro 12.2 / Lenovo Win8 Tab / Eee Slate / '13 Nexus 7


#272 rlewis312010

rlewis312010

    Member

  • Members
  • PipPip
  • 111 posts

Posted 23 April 2013 - 08:44 AM

No, do not leave the <>.  Remove the whole line.

Okay, so <oem> blah blah blah   DELETE the entire line that references OEM?  I have yet to open it so I may just see if you are here later. 



#273 hadeshorn9

hadeshorn9

    Moot Minion

  • Dedicated Supporter
  • PipPipPip
  • 961 posts
  • LocationBoston MA area
  • Current Device(s):Nexus 6 64gb, Dell Venue 8, Chromecast

Posted 23 April 2013 - 08:48 AM

It seems some people are having problems with the part requiring pressing a hardware button.

 

I've uploaded a new version of the exploit that will cause the phone to vibrate when that stage has competed successfully. As the instructions now state, don't press enter to continue with the exploit until your device has vibrated. That will hopefully fix all the problems.

 

The updated exploit also uninstalls old versions of Superuser.apk if it was previously installed on the system partition instead of as a normal app.

Thank you sir!

You are a gentleman and a scholar!

Much appreciated all your hard work!


OG -> Bionic -> (2013) Moto X DE -> Nexus 6 64gb Running 5.1 via Samuri's HoN 


#274 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:49 AM

Okay, so <oem> blah blah blah   DELETE the entire line that references OEM?  I have yet to open it so I may just see if you are here later. 

 

You are making this SOOOOO much harder than it needs to be for crying out loud.  HERE....

 

Please Login or Register to see this Hidden Content


Non potest esse nisi unus


#275 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:50 AM

P.S. Yes, I took out the flash to emstorage, too, so it won't wipe out your internal sdcard.  But it will erase the data partition.


Non potest esse nisi unus


#276 rlewis312010

rlewis312010

    Member

  • Members
  • PipPip
  • 111 posts

Posted 23 April 2013 - 08:51 AM

 

You are making this SOOOOO much harder than it needs to be for crying out loud.  HERE....

Please Login or Register to see this Hidden Content

LOL, so just use that in the XML, thanks Sam.  Did I ever say I love you in a "Android programming" and "Tech support" way?  You are my hero.  Saying delete <oem> so it is <> is confusing, lol.  That is different from what you showed me.  Thanks again Sam.  I will get into this as home and looks like new setup for exploit per Dan himself.  Hopefully a great day. 



#277 bigtex52

bigtex52

    n00b

  • Members
  • Pip
  • 13 posts
  • Twitter:@STM8TR
  • LocationDallas

Posted 23 April 2013 - 08:54 AM

Sam, something up here at work. I'll have to catch up with you later. Thanks for the help, as always!



#278 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 08:58 AM

Sam, something up here at work. I'll have to catch up with you later. Thanks for the help, as always!

 

Hey no problem man. I should be around when you need help.  Of course, my RAZR HD just arrived so I need to utilize some of Dan's....OTHER work....soon.  :D


  • hadeshorn9 likes this

Non potest esse nisi unus


#279 jgattonii

jgattonii

    Member

  • Members
  • PipPip
  • 32 posts
  • Current Device(s):Droid Bionic

Posted 23 April 2013 - 09:09 AM

You're trying to connect on the bionic before you have the share set up?

No Samurai; I only showed that part on top as that's what's bombing out  I put the rest at the end just in case there would be something there that I was doing wrong somehow...



#280 SamuriHL

SamuriHL

    Android Warrior

  • Smod
  • 44,201 posts
  • Current Device(s):S21 Ultra, Pixel 6

Posted 23 April 2013 - 09:40 AM

Well, it's not taking your pwd, so, I would change it to something else in samba, restart the samba service, and reconnect on the phone.


  • jgattonii likes this

Non potest esse nisi unus





2 user(s) are reading this topic

0 members, 2 guests, 0 anonymous users