Page 1 of 1
New MMS vulnerability in Android found
Posted: Mon Jul 27, 2015 2:20 pm
by kevm14
Re: New MMS vulnerability in Android found
Posted: Mon Jul 27, 2015 9:13 pm
by Adam
Re: New MMS vulnerability in Android found
Posted: Tue Jul 28, 2015 8:34 pm
by Adam
Re: New MMS vulnerability in Android found
Posted: Tue Jul 28, 2015 8:42 pm
by kevm14
If ‘Heartbleed’ from the PC era sends chill down your spine, this is much worse.
Nice, if a bit dramatic.
Re: New MMS vulnerability in Android found
Posted: Tue Jul 28, 2015 8:50 pm
by Adam
Effects every Android phone running 2.2 or newer. Mozilla's Firefox OS is fixed as of v38. SilentCircle’s Blackphone is patched as of v1.1.7. That's it, though. It isn't in the AOSP baseline yet.
These guys are presenting information about this during Black Hat this year, which starts August 5th. I will post an update with a link to the presentation when this happens.
Re: New MMS vulnerability in Android found
Posted: Thu Aug 06, 2015 10:07 pm
by Adam
Correction: the Mozilla issue was in the Firefox browser, which uses the same library for stuff.
Update: Google is pushing out patches for Nexus devices. In addition, they are looking to implement monthly patches.
https://threatpost.com/google-plans-mon ... nes/114148
Re: New MMS vulnerability in Android found
Posted: Mon Aug 31, 2015 8:36 pm
by Adam