Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - Android vulnerability exploitable in the majority of devices (arstechnica.com)

An anonymous reader writes: The EZ2Use attack code has been released which exploits a vulnerability that exists in Android versions prior to 4.2. Vulnerable versions are installed on the majority of Android devices and most do not have a path to a patched version. The malicious code is a drive-by malware attack which gives the attacker remote shell access to the phone's filesystem and camera.
This vulnerability and Google's inability to patch many of the vulnerable systems in use is more justification for Google's move to include new functionality in its proprietary GMS application platform where they can simply push out a patched binary that will run atop any Android version. Deprecating functionality in AOSP and re-implementing it in GMS will at least give Google a simple path to patch vulnerabilities like this.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Android vulnerability exploitable in the majority of devices

Comments Filter:

The IBM purchase of ROLM gives new meaning to the term "twisted pair". -- Howard Anderson, "Yankee Group"

Working...