Saturday, 13 August 2016

On 04:09 by admin   No comments
Qualcomm chip a set of four vulnerability allows an attacker to gain root privileges and access to Android devices, according to the latest statistics, over 900 million Tablet PCs and smart phones the existence of this vulnerability.This morning four vulnerabilities in Las Vegas hacker conference is disclosed. 
All four vulnerabilities and utilized only by a rogue application is installed on the device. An attacker entered the development does not require any special privileges, even more incredible is that a malicious user installs the application without considering whether hidden inside.

All four vulnerabilities allow an attacker to upgrade user-level application permissions and root level, granting the attacker complete access to any telephony functions. This means that an attacker can download and install malicious applications software, in the case where the user is completely unaware of. 
Qualcomm chips have occupied 65% market share of Android devices, the event caught the equipment to reach 900 million units. The affected models include: Blackberry Priv Blackphone 1, Blackphone, Google Nexus 5 X, Nexus 6, Nexus - 6 p, HTC, HTC M9, HTC 10, LG G4, LG G5, LG V10, Moto X, OnePlus, OnePlus 2, OnePlus 3, Samsung Galaxy S7, S7 edge Samsung, Sony Xperia and so on.


Qualcomm said the repair of all equipment vulnerability will take a long period of time, because Qualcomm chipset firmware patches need to be integrated by Android OEM manufacturers to the Android operating system, and then to the mobile operators, the final decision will be the right time to deliver to the end user. 
Several media reports in the United States, whether it is the Federal Trade Commission (FTC) and the Federal Communications Commission (FCC) is investigating the way the security update and inform the user. QuadRooter released technical report and launched an Android application to help users diagnose their phone to detect the safety of their equipment. Google spokesman determine, fix the vulnerability patch to be fully released until September.

0 comments:

Post a comment