Archives: 上海龙凤419Oggy

Samsung issues Galaxy S3 fix for phone wipe vulnerability

September 21, 2019 | By admin | Comments Off on Samsung issues Galaxy S3 fix for phone wipe vulnerability | Filed in: nibtjzsrs.

first_imgToday Samsung stated that they are releasing an OTA firmware patch for their flagship Galaxy S III phone to resolve the security issue that was brought to light yesterday.The vulnerability allowed a single line of HTML to initiate a wipe of an Android device running Samsung’s TouchWiz UI (so not the Galaxy Nexus or any device running stock Android), which means that merely clicking the wrong link could be enough to cause serious problems.Samsung’s Belgian Twitter account announced the fix, and indicated that it should already be available. Owners of the Galaxy S III should check under Settings>About Device>Software Update to download the OTA patch. Samsung indicated that a similar update for the Galaxy S II is currently undergoing testing, and hopefully that means they’re planning to address all the other affected devices.The vulnerability stems from how TouchWiz handles Unstructured Supplementary Service Data (USSD) codes, which GSM phones use to communicate with application servers. When opening a web page with an embedded USSD code, most devices merely load it into the dialer and wait for the user to click “send.” The phones affected by the exploit, however, automatically dial the code, which means that users could easily be tricked into starting a complete wipe that can’t be canceled.It’s good to see that Samsung is responding to the issue quickly, but it serves as a reminder that the Internet can be a dangerous place, even on mobile devices. Be suspicious of links unless you’re sure they’re safe and secure your online existence.via The Vergelast_img read more

Tags: , , , , , , , , , , ,