hi yall, if this is the incorrect location, then flame on.
i have an android all-in-one desktop replacement (acer da220hql) that i got from one of my friends for doing some computer repair. he got it in a lot of TVs he bought for his ebay business, but at the time, it didnt power on. i replaced the power board and the system works great; its just locked with a text password. great, i say! factory reset it!
but the sticky issue comes in: there is no way for a user to factory reset the device without sending it back in to acer, and besides this, the device is out of warranty. there are no hardware buttons on the machine other than the power button, and usb debugging is disabled, so no adb shell. i cant get into the machine to enable this of course, and i have no idea what google account is associated with the machine, and therefore i also cannot unlock it remotely.
this is where i plea to you for help. I know that the device is running android 4.0.4 or earlier, and i need to delete the /data/system/*.key files to remove the lockscreen password. i hoped that i might be able to leverage this bug (http://seclists.org/fulldisclosure/2014/Nov/86
) to force usb debugging on, but im not sure what kind of sql query i would need to form to do that. furthermore, this particular device is equipped with a hardware ethernet port. not sure what tcp ports are open on there, havent nmapped it yet, but im pretty sure it would listen for dhcp.
So, my specific question: what methods do you recommend for brute forcing this lockscreen password (locally or remotely), or removing the password altogether?