CVE-2013-6775 Information

Description

The Chainfire SuperSU package before 1.69 for Android allows attackers to gain privileges via the (1) backtick or (2) $() type of shell metacharacters in the -c option to /system/xbin/su.

Reference

http://www.securityfocus.com/archive/1/529797