Potentially Dangerous Root Exploit Found for Some Galaxy S3 and Galaxy Note 2 Devices

Discussion in 'Alternatives to iOS and iOS Devices' started by SomeDudeAsking, Dec 16, 2012.

  1. SomeDudeAsking macrumors 65816

    Joined:
    Nov 23, 2010
    #1
    This security vulnerability is for some version models of the [international Samsung Galaxy S3] and some versions of the [Verizon / international Galaxy Note 2]. North American versions of the Galaxy S3 are not affected. It requires stock software. Custom ROMs should not be affected. North American versions of the Galaxy Note 2 are not affected at this time other than the Verizon version.

    The original developers thread over at XDA where this was discovered is:

    http://forum.xda-developers.com/showthread.php?t=2048511

    If you want to root your affected device with this exploit, you can get instructions at:
    http://forum.xda-developers.com/showthread.php?t=2050297


    Here is some press coverage from TheVerge:

    Serious vulnerability reportedly leaves Samsung Galaxy S III and other devices wide open to malware

    http://www.theverge.com/2012/12/16/3773550/samsung-galaxy-s-iii-galaxy-note-ii-serious-vulnerability

    This vulnerability requires you to download and run malicious apps onto your device to be affected.
     
  2. siiip5 macrumors 6502

    Joined:
    Nov 13, 2012
    #3
    I think the whole article could be summed up with just this sentence. Or just one word: "Duh" :D
     
  3. munkery macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #4
    This is a privilege escalation bug that allows the installation of more malicious malware such as premium rate SMS and banking malware. These types of malware can't be installed without privilege escalation.

    This exploit wouldn't be exploitable if Android used a Mandatory Access Control (MAC) based sandbox like the MAC sandbox used in iOS.
     

    Attached Files:

  4. Zwhaler macrumors 603

    Zwhaler

    Joined:
    Jun 10, 2006
    #5
    SOunds like you'll be safe if you don't torrent apps, basically.
     
  5. blackhand1001 macrumors 68030

    blackhand1001

    Joined:
    Jan 6, 2009
    #6
    Pretty much. Android malware is such an overblown issue. This doesn't even effect the US version of the galaxy s3.
     
  6. munkery macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #7

Share This Page