Follow Slashdot stories on Twitter

 


Forgot your password?
Close
typodupeerror
×
Android Cellphones Handhelds Security

Huge Security Hole In Recent Samsung Devices 153

Posted by timothy from the it's-like-they-handed-you-the-phone dept.
An anonymous reader writes "A huge security hole has been discovered in recent Samsung devices including phones like the Galaxy S2 and S3. It is possible for every user to obtain root due to a custom faulty memory device created by Samsung." The problem affects phones with the Exynos System-on-Chip.
This discussion has been archived. No new comments can be posted.

Huge Security Hole In Recent Samsung Devices More

Huge Security Hole In Recent Samsung Devices

Comments Filter:

  • Re:Great (Score:2, Informative)

    by Anonymous Coward on Sunday December 16, 2012 @07:32PM (#42309289)

    That phone has been rootable for ages. It runs Ice Cream Sandwich and even Jellybean quite smoothly with the proper ROM/kernel.

  • Not LTE GS3 (Score:5, Informative)

    by Anonymous Coward on Sunday December 16, 2012 @07:38PM (#42309333)

    This only effects the international S3, the US LTE version uses a Snapdragon CPU.

  • Re:Great (Score:4, Informative)

    by kamapuaa ( 555446 ) on Sunday December 16, 2012 @07:41PM (#42309367) Homepage

    Google, this is an easy thing to do. I can't guarantee this site but: https://gurde.com/2012/08/how-to-android-jelly-bean-4-1-1-on-galaxy-s-i9000/ [gurde.com] is the first result I got.

  • Re:Root (Score:5, Informative)

    by 14erCleaner ( 745600 ) <FourteenerCleaner@yahoo.com> on Sunday December 16, 2012 @07:49PM (#42309415) Homepage Journal
    The problem is that this hole will allow any app to read or write to any of memory, allowing trojans.

  • Re:Root (Score:5, Informative)

    by Nerdfest ( 867930 ) on Sunday December 16, 2012 @08:05PM (#42309507)

    Looks like someone has a quick fix out. It's an app that sets the perms on the file properly, but it does cause problems with the camera on the S3. The app lets you toggle the permissions on and off so you can still use your camera is you wish. I haven't tried it as I don't have a phone with the hole, but teh XDA guys are pretty reputable: Here it is. [xda-developers.com] Certainly can't complain about the open source community on something like this, although it would have been nice if he reported it to Samsung a little in advance of the release of the problem.

  • Re:Great (Score:4, Informative)

    by mrbester ( 200927 ) on Sunday December 16, 2012 @08:56PM (#42309727) Homepage

    Kies is the biggest pile of bloated crapware since Norton.

  • Re:Root (Score:5, Informative)

    by stephanruby ( 542433 ) on Sunday December 16, 2012 @09:03PM (#42309803)

    The way the summary is worded makes it sound like a user having root is a security exploit ...

    The Cleaner is correct. In the case of Android, each application is considered a separate user. That's how applications are sandboxed away from each other. This way, an application only has access to its own files (which reside in its home folder). An application only has access to its own SQlite database instances (which again reside only within its own home folder, since SQLite is file-based, this arrangement works). With its own userid, an application can only access its own process and its own data. Etc.

    In other words, Android is an operating system built on top of another operating system and Android doesn't try to completely reinvent the wheel when it comes to security.

  • Re:security hole? (Score:5, Informative)

    by countach ( 534280 ) on Sunday December 16, 2012 @09:10PM (#42309865)

    Err, because any app you download can p0wn your phone?

  • Re:security hole? (Score:4, Informative)

    by nedlohs ( 1335013 ) on Sunday December 16, 2012 @09:12PM (#42309881)

    Because some random app could subvert the permissions it was granted at install and do whatever the hell it wants?

  • Re:Root (Score:2, Informative)

    by Tough Love ( 215404 ) on Sunday December 16, 2012 @09:27PM (#42310001)

    The fandroids will spin this into something to make it seem like it was a win for them all along.

    Whoa, the fandroids didn't do that! Instead, the fandroids discussed the issues, risks and fixes calmly, intelligently and informatively. Now if only iFans were like that, maybe I wouldn't feel like I got something icky on me after any encounter.

  • Re:Not LTE GS3 (Score:4, Informative)

    by compro01 ( 777531 ) on Monday December 17, 2012 @01:36PM (#42315305)

    Yes, the I9305 is affected.

    The list below is all models affected by this, which includes the international GS2 variant, as well as the Note 1 and 2, Galaxy Tab Plus, and Note 10.1.

    GT-I9100
    GT-I9300
    GT-I9305
    GT-N7000
    GT-N7100
    GT-N7105
    SGH-I317
    SCH-I605
    GT-P6210
    GT-N8000
    GT-N8010
    GT-N8013
    GT-N8020

    It does not affect the Snapdragon-based I747 (AT&T, Rogers, Bell and other major Canadian carriers) nor the T999 (T-mobile, as well as Canadian AWS carriers like Wind, Mobilicity, and Videotron)

Slashdot Top Deals

He has not acquired a fortune; the fortune has acquired him. -- Bion

Close