Client Login
 Quick Contact
Researchers Find Critical Vulnerability In Android 2.3
Category : General 29 Jan 2011 04:22 AM | Industry News
Google is reportedly aware of the new issue and is already testing a fix, which will be rolled out as an update to the next Gingerbread revision. Many Android phones are likely never going to see this fix due to ongoing complexities with releasing Android updates and will probably stay vulnerable forever.
Xuxian Jiang, an assistant professor at NC State's Department of Computer Science, said that the vulnerability could allow a hacker to obtain a full list of applications installed on the device, upload the applications to a remote server and even read and download the files stored on a user’s memory card.
“Unfortunately, our finding here is that the patch contained in Android 2.3 is not an ultimate fix and can still be bypassed. We have a proof-of-concept exploit with a stock Nexus S phone and are able to successfully exploit the vulnerability to steal potentially personal information from the phone,” he said in his report.