Major Android remote-access vulnerability is now being exploited

IvanIV · 26-08-2015, 12:02

Another day another trouble in Android paradise

Major Android remote-access vulnerability is now being exploited

TeamViewer's remote control plug-in, pre-installed by some phone OEMs and phone carriers for support, offers an exploitable backdoor for attackers (and even some legitimate apps) to gain root-level access to devices.

Check Point discovered that one application in the Google Play store is exploiting the vulnerability to gain a high level of access to the Android OS, bypassing user permissions—and bypassing Google’s security scans of Play applications to do so. Update: A Google spokesperson told Ars that the offending app has been suspended in the Play store.

So at least you cannot install that offending app anymore.

26-08-2015, 12:02	#1
IvanIV Forum Member Join Date: May 2006 Posts: 25,199	Major Android remote-access vulnerability is now being exploited Another day another trouble in Android paradise Major Android remote-access vulnerability is now being exploited TeamViewer's remote control plug-in, pre-installed by some phone OEMs and phone carriers for support, offers an exploitable backdoor for attackers (and even some legitimate apps) to gain root-level access to devices. Check Point discovered that one application in the Google Play store is exploiting the vulnerability to gain a high level of access to the Android OS, bypassing user permissions—and bypassing Google’s security scans of Play applications to do so. Update: A Google spokesperson told Ars that the offending app has been suspended in the Play store. So at least you cannot install that offending app anymore.

DS Forums

Major Android remote-access vulnerability is now being exploited