Android bugs leave every smartphone and tablet vulnerable to privilege escalation
IvanIV
Posts: 30,301
Forum Member
✭✭✭
Android bugs leave every smartphone and tablet vulnerable to privilege escalation
Six new bugs uncovered in Google's mobile platform shows how every Android-powered device – more than a billion devices in all – are vulnerable to malware thanks to privilege escalation issues.
...
The problem, to put it simply, is that for the sake of convienience [sic] the Android user interface doesn't pop up any prompts pointing out the new permissions, but instead assigns them automatically in the background without giving the user any say in the matter.
Six new bugs uncovered in Google's mobile platform shows how every Android-powered device – more than a billion devices in all – are vulnerable to malware thanks to privilege escalation issues.
...
The problem, to put it simply, is that for the sake of convienience [sic] the Android user interface doesn't pop up any prompts pointing out the new permissions, but instead assigns them automatically in the background without giving the user any say in the matter.
0
Comments
I'm not overly concerned. an attack vector that requires an app to be in position before a firmware revision. and that we can scan for, seems largely theoretical to me.
that is not completely true. prior to the discovery of this bug it would have been technically possible for an app to be distributed via play and still avail itself of the exploit.
but i agree the risk is vanishingly small to the point i'm more worried about being hit by a meteorite.
At least you will know what hit you. A software firm should close any found security hole, they do not have a liberty to ignore them, but the severity influences how quickly it will be closed.
Strange how these sensationalist reports always come when new flagship phones are due to appear, trying to convince people to join the herd of sheep aka Apple.