Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Android Cellphones Security Linux

Attackers Exploit New 0-day Vulnerability Giving Full Control of Android Phones (arstechnica.com) 26

"Attackers are exploiting a zero-day vulnerability in Google's Android mobile operating system that can give them full control of at least 18 different phone models," reports Ars Technica, "including four different Pixel models, a member of Google's Project Zero research group said on Thursday night." The post also says there's evidence the vulnerability is being actively exploited.

An anonymous reader quotes Ars Technica: Exploits require little or no customization to fully root vulnerable phones. The vulnerability can be exploited two ways: (1) when a target installs an untrusted app or (2) for online attacks, by combining the exploit with a second exploit targeting a vulnerability in code the Chrome browser uses to render content. "The bug is a local privilege escalation vulnerability that allows for a full compromise of a vulnerable device," Stone wrote. "If the exploit is delivered via the Web, it only needs to be paired with a renderer exploit, as this vulnerability is accessible through the sandbox...."

Google representatives wrote in an email: "Pixel 3 and 3a devices are not vulnerable to this issue, and Pixel 1 and 2 devices will be protected with the October Security Release, which will be delivered in the coming days. Additionally, a patch has been made available to partners in order to ensure the Android ecosystem is protected against this issue."

The use-after-free vulnerability originally appeared in the Linux kernel and was patched in early 2018 in version 4.14, without the benefit of a tracking CVE. That fix was incorporated into versions 3.18, 4.4, and 4.9 of the Android kernel. For reasons that weren't explained in the post, the patches never made their way into Android security updates.

This discussion has been archived. No new comments can be posted.

Attackers Exploit New 0-day Vulnerability Giving Full Control of Android Phones

Comments Filter:
  • I hate that crackers are always so secretive about the actual exploit. I can't seem to find it.

    The manufacturer of my phone is really annoying in that regard. It would be much easier, to just use this exploit. I checked, and it uses a vulnerable kernel.

    I am a programmer, and have rooted phones via official ways before.
    I haven't written any Android apps before, as I despise both enterprisey XML and enterprisey Java.

    Where can I find an easy way to use this exploit?
    Ideally an open-source app from the discovere

    • I am sorry, but anything that allows you to actually own the device you purchased is an unacceptable security risk.
      • I am sorry, but anything that allows you to actually own the device you purchased is an unacceptable security risk.

        Anything that allows random attackers to own the device you purchased, and which contains all of your data, is an unacceptable security risk.

        If you want to run your own software, just buy a phone from a vendor that allows you to unlock the bootloader and do what you like.

      • Google representatives wrote in an email: "Pixel 3 and 3a devices are not vulnerable to this issue, and Pixel 1 and 2 devices will be protected with the October Security Release, which will be delivered in the coming days.

        The email continued:

        For anyone else, please throw away your current phone, wait six months, buy the latest model, and see if it's running a patched version of Android. If not, repeat as often as required.

    • You're seriously asking Slashdot in 2019? Try xda, someone there will know.
    • by Anonymous Coward

      Ideally an open-source app from the discoverer himself, that I can side-load, and that lets me install SuperSU.

      SuperSU is a closed source app that is now run by a shadowy group in China. Why would you want to root your Android and install that?

    • by Smask ( 665604 )

      Maybe there is a chance that I finally get to root my phone.
      Locked down LG Q6, running Oreo.

  • Security holes, security holes and more security holes. There may be dozens of others we don't know about. So one should always assume that one's desktop PC, laptop, smartphone or tablet is full of holes. Keeping stuff confidential in this world? Maybe buy an Amiga 500 from eBay and use that as your exploit-free desktop. =P
    • Security holes, security holes and more security holes.

      Well, the cops need access, ok? And facebook is being harassed into dropping their encryption too. Whaddya expect?

    • by nyet ( 19118 )

      The issue is that android is WAY off the mainline kernel in their own idiotic separate ARM SoC bubble universe where the peripheral hw devs are even more incompetent than the interns writing the drivers for them.

      There are hacks in the Android kernel (due to completely broken hw design) that would (and should) never go into the mainline. The problem is fundamentally unfixable.

    • Comment removed based on user account deletion
  • by drnb ( 2434720 ) on Saturday October 05, 2019 @03:57PM (#59273768)

    Additionally, a patch has been made available to partners in order to ensure the Android ecosystem is protected against this issue.

    A patch most partners will not deliver to so many current Android users. Use of the word "ensure" is humorous, more like "we did our part, don't blame us".

  • and "software"?

Beware of all enterprises that require new clothes, and not rather a new wearer of clothes. -- Henry David Thoreau

Working...