kvmmodern.blogg.se - Zte exploit researcher

We test this AT command corpus against 8 Android devices from 4 vendors via USB connections.”ĪT commands ‘support telephony functions’ in the smartphones. “We systematically retrieve and extract AT commands from over 2,000 Android smartphone firmware images across 11 vendors to build a database of 3,500 commands. Reportedly, the team of 11 researchers from different institutes analyzed a range of smartphones from different vendors to observe the impact of AT command exploits. They have presented the details of their findings in a paper included in the Proceedings of the 27th USENIX Security Symposium. Reportedly, they tested Android phones from 11 vendors, all of which were found vulnerable to AT command attacks. AT Command Attacks Threat Android Phones From 11 VendorsĪ group of security researchers have discovered how AT command exploit attacks threaten most Android smartphones today. Once again we are talking about Android vulnerability after researchers found that Android phones from 11 vendors are vulnerable to hacking attacks exploiting AT commands. Not much time has passed since we heard about Android’s susceptibility to MITM attacks and the plethora of vulnerabilities in the preinstalled apps. Barnes & Noble NOOK Tablet 10.This month, we have come across several instances regarding Android vulnerabilities.Barnes & Noble NOOK Tablet 7" BNTV450 & BNTV460.ASUS ZenPad Z3xxM(F) MT8163-based series.

Amazon Fire TV 2 (up to Fire OS 5.2.6.9).

Amazon Fire HD 8 2018 (up to Fire OS 6.3.0.1).

Amazon Fire HD 8 2017 (up to Fire OS 5.6.4.0).

Amazon Fire HD 8 2016 (up to Fire OS 5.3.6.4).

Here's the full list of confirmed devices, courtesy of XDA Developers: It was later discovered that the vulnerability, nicknamed 'MediaTek-su,' was also present on many other phones and tablets using MediaTek processors. The developer, known as 'diplomatic' on the XDA Forums, later released a script that used the vulnerability to temporarily gain root access on Fire tablets. As XDA Developers pointed out in an investigative piece, the vulnerability was first discovered in February 2019 by a developer looking for a way to root Amazon's Fire tablets. One of the vulnerabilities fixed in the March security patch is CVE-2020-0069, a security flaw that affects the Command Queue driver on devices with certain MediaTek processors. That's why Google has been releasing monthly security patches for years, and if you needed another reason for why those updates are so important, the March 2020 release fixes a critical flaw on many MediaTek devices.

Security vulnerabilities are unfortunately extremely common in smartphones, given the complexity and varying codebases of most devices.

When you make a purchase using links on our site, we may earn an affiliate commission. Readers like you help support Android Police.