d:[["$","$Le",null,{"page":"page"}],["$","$Lf",null,{}],["$","div",null,{"className":"container shadow-4 rounded mt-3 mb-3 p-3 border border-primary","children":[[["$","$L10","0",{"href":"../android","className":"badge badge-primary m-1","children":"android"}],["$","$L10","1",{"href":"../debugging","className":"badge badge-primary m-1","children":"debugging"}],["$","$L10","2",{"href":"../system","className":"badge badge-primary m-1","children":"system"}],["$","$L10","3",{"href":"../exploit","className":"badge badge-primary m-1","children":"exploit"}]],["$","h1",null,{"className":"h1","dangerouslySetInnerHTML":{"__html":"Implications of leaving a system app in debug mode?"}}],["$","hr",null,{}],["$","div",null,{"dangerouslySetInnerHTML":{"__html":"

What are the possible dangers/implications of leaving a system app in debug mode, in a public OTA? Does it allow privilege escalation, by using something like run-as?\nThank you.

\n\n

EDIT: A bit more clarification, if I leave a system app as a debug app, is it possible to use

\n\n

run-as com.mydebug.app

\n\n

to switch to a system UID?

\n"}}],["$","hr",null,{}],["$","div",null,{"className":"h3","children":["Solution ",["$","li",null,{"className":"h3 fa fa-arrow-down"}]]}],["$","hr",null,{}],["$","div",null,{"dangerouslySetInnerHTML":{"__html":"

Answering my own question, it's not possible. run-as doesn't switch to any lower UIDs than AID_APP.

\n"}}],["$","br",null,{}],["$","ul",null,{"className":"list-group","children":[]}],["$","br",null,{}],["$","$L11",null,{}],["$","br",null,{}]]}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","div",null,{"className":"container ftr1","children":[["$","hr",null,{}],["$","footer",null,{"className":"bg-body-tertiary text-center text-lg-start","children":["$","div",null,{"className":"text-center p-3","children":["Content Source :",["$","a",null,{"className":"text-body","href":"https://stackoverflow.com","rel":"nofollow noreferrer noopener","id":"ftlk","style":{"color":"black"},"children":"Stackoverflow"}]," | ",["$","$L10",null,{"href":"/privacy-policy","style":{"color":"blue !important"},"children":"Privacy Policy"}]," | ",["$","$L10",null,{"href":"/terms-and-condition","style":{"color":"blue !important"},"children":"Terms and Condition"}]," | ",["$","$L10",null,{"href":"/contact-us","style":{"color":"blue !important"},"children":"Contact Us"}]]}]}]]}],["$","$L15",null,{}],["$","$L16",null,{}]]