Qualcomm flaw puts millions of Android devices at risk

Discussion in 'Off-Topic' started by Sefie, May 7, 2016.

  1. Sefie

    Sefie

    Joined:
    Jan 15, 2014
    Messages:
    947
    Likes Received:
    183
    A vulnerability in an Android component shipped with phones that use Qualcomm chips puts users’ text messages and call history at risk of theft.

    The flaw was found by security researchers from FireEye and was patched by Qualcomm in March. However, because the vulnerability was introduced five years ago, many affected devices are unlikely to ever receive the fix because they’re no longer supported by their manufacturers.

    The vulnerability, which is tracked as CVE-2016-2060, is located on an Android component called “netd” that Qualcomm modified in order to provide additional tethering capabilities. Malicious applications could exploit the flaw in order to execute commands as the “radio” system user, which has special privileges.

    http://www.pcworld.com/article/3066...puts-millions-of-android-devices-at-risk.html
     
    Sefie, May 7, 2016
    #1
Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.