According to the show that made Alecu in DefCamp security conference, to send messages to a successive 4 Nexus with Android 4.3, the device becomes unstable and does not respond to commands.
All devices often have vulnerabilities that after every update is going to fix patching, although there is always some undiscovered, as has been found Bogdan Alecu, a system administrator and expert security researcher. Alecu has discovered a fault affecting the Galaxy Nexus, Nexus 4 and the new Nexus 5 terminals and is present in from Android Ice Cream Sandwich to KitKat. The failure is related to a type of SMS messages called Class 0 or Flash SMS.
These messages are displayed directly on the screen of the device and are not stored in the terminal. After read as any message, users usually have some choice in them, such as Accept, Decline or similar. When receiving such SMS, hear no audible alerts and always overlap any applications that are open, and if the SMS is discarded and a new one arrives, it overlaps, and so on, so that the user not aware that they are coming to look at the display unless your phone.
What Alecu has discovered is that when a lot of these flash messages around 30 are received, and the user does not rule, the Nexus devices I mentioned earlier behave incorrectly and may crash, reboot, or even lose your network connection, and how these messages have no arrival alerts, the user would only realize the mistake when attending the phone.
According to the show that made Alecu in DefCamp security conference, to send messages to a successive four Nexus with Android 4.3, the device becomes unstable and does not respond to commands. Obviously, it is very unusual to get so many messages 0 Class, but this method itself could be used as an attack to block the devices and their connections without the user noticing. This security flaw was discovered by Alecu long ago, and even already notified Google, who replied that it would be fixed in Android 4.3, which did not happen, as is still present in 4.4.
Interestinglyfailure affects only the three Nexus devices that have been tested over 20 devices from different manufacturers and none has suffered or been vulnerable to this error. Fortunately for users of Google phones, uploaded to Google Alecu Play an application to fix this fault by a firewall that limits the number of this type of SMS that can be received. You can download the application from Class0Firewall the link below to protect your Nexus, while Google is working to address this security flaw officially.
No comments:
Post a Comment