This was reported by security company Zimperium that Stage Fright flaw in Android late July made public.
Zimperium speaks of Stage Fright 2.0. First Stage Fright vulnerability in July unveiled Google has already rolled out a repair to its users and Android manufacturers.
The new vulnerability comes as Zimperium for virtually any Android device that since Android 1.0 in 2008 has been released. In devices with Android 5.0 and later, the bug through a second vulnerability also could be misused.
Audio and Video Files
Stage Fright 2.0 is much like its predecessor abuse of the video platform of Android. In the previous leak vulnerability could be exploited by receiving mp4 files via MMS, among other things.
The now discovered vulnerabilities to abuse the way the metadata of MP3 and MP4 files will be processed. That makes it potentially possible to attack vulnerable machines through music and video files via eg websites.
The loading of the music and video files would be enough to allow abuse of vulnerability. By visiting a malicious site, users would be already infected.
Solution
It is also infecting possible through this vulnerability, users who use the same unsecured Wi-Fi network. Additionally walk users of apps like media player and messaging apps using the video platform danger.
Google is by Zimperium been informed of the first bug that “almost any Android device would affect ‘, which is repaired next week. The second bug that makes the first vulnerability for devices with Android 5.0 and above may not yet be recognized by Google.
Further details about the vulnerability are only released by Zimperium solutions like Google has released for the bugs. Only then Android users can use existing Stage Fright control apps monitor their devices vulnerability
No comments:
Post a Comment