CVE-2012-2949
The ZTE sync_agent program for Android 2.3.4 on the Score M device uses a hardcoded ztex1609523 password to control access to commands, which allows remote attackers to gain privileges via a crafted application.
Date published : 2012-05-29
http://blog.mylookout.com/blog/2012/05/21/zte-security-vulnerability