![]() |
2016-10-21
, 18:18
|
Posts: 3,464 |
Thanked: 5,107 times |
Joined on Feb 2010
@ Gothenburg in Sweden
|
#3
|
![]() |
2016-10-21
, 19:13
|
|
Posts: 6,436 |
Thanked: 12,701 times |
Joined on Nov 2011
@ Ängelholm, Sweden
|
#4
|
![]() |
2016-10-22
, 01:51
|
Posts: 31 |
Thanked: 31 times |
Joined on Jan 2013
@ USA
|
#5
|
![]() |
2016-10-22
, 05:32
|
Posts: 93 |
Thanked: 283 times |
Joined on Jul 2016
|
#6
|
AFAIU you first have to login via ssh(or similar) as normal user to the phone before you can gain root access I don't see it as critical on phone but worse on web sites.
![]() |
2016-10-22
, 14:23
|
|
Posts: 764 |
Thanked: 2,889 times |
Joined on Jun 2014
|
#7
|
http://www.ibtimes.co.uk/chinese-hackers-fool-google-put-one-million-android-users-risk-1520592
![]() |
2016-10-22
, 17:02
|
Posts: 93 |
Thanked: 283 times |
Joined on Jul 2016
|
#8
|
![]() |
2016-10-22
, 18:09
|
Posts: 368 |
Thanked: 975 times |
Joined on Aug 2013
|
#10
|
That's just the first example I found in Google. I've seen news about dozens or hundreds of innocent-looking apps in Play Market / App Store with hidden ad/spy/mal-ware inside. Surely you have to explicitly allow them to run (install them yourself) but how do you know which app is clean and legitimate and which is not?
The Following User Says Thank You to t-b For This Useful Post: | ||
Quite a massive number of devices that are vulnerable to this bug as it's quite an old feature and only discovered now. Then to think many android phones won't get an kernel-update probably. I am assuming android is just as vulnerable as any other linux distro with old kernel.
N900 loaded with:
CSSU-T (Thumb)
720p recording,
Pierogi, Lanterne, Cooktimer, Frogatto
N9 16GB loaded with:
Kernel-Plus
--
[TCPdump & libpcap | ngrep]
--
donate