maemo.org - Talk

maemo.org - Talk (https://talk.maemo.org/index.php)
-   Android (https://talk.maemo.org/forumdisplay.php?f=54)
-   -   QuadRooter: New Android Vulnerabilities (https://talk.maemo.org/showthread.php?t=97176)

Win7Mac 2016-08-08 13:10

QuadRooter: New Android Vulnerabilities
 
Quote:

Check Point today disclosed details about a set of four vulnerabilities affecting 900 million Android smartphones and tablets that use Qualcomm® chipsets. The Check Point mobile threat research team, which calls the set of vulnerabilities QuadRooter, presented its findings in a session at DEF CON 24 in Las Vegas.

What is QuadRooter?
QuadRooter is a set of four vulnerabilities affecting Android devices built using Qualcomm chipsets. Qualcomm is the world’s leading designer of LTE chipsets with a 65% share of the LTE modem baseband market. If any one of the four vulnerabilities is exploited, an attacker can trigger privilege escalations for the purpose of gaining root access to a device.

Some of the latest and most popular Android devices found on the market today use these chipsets, including:

BlackBerry Priv
Blackphone 1 and Blackphone 2
Google Nexus 5X, Nexus 6 and Nexus 6P
HTC One, HTC M9 and HTC 10
LG G4, LG G5, and LG V10
New Moto X by Motorola
OnePlus One, OnePlus 2 and OnePlus 3
Samsung Galaxy S7 and Samsung S7 Edge
Sony Xperia Z Ultra
Source: http://blog.checkpoint.com/2016/08/07/quadrooter/

HtheB 2016-08-08 14:08

Re: QuadRooter: New Android Vulnerabilities
 
Now if we only had Android root for Jolla C and Intex Aqua Fish.
Did someone installed the QuadRoot scanner on Jolla phones yet?

mp107 2016-08-08 14:18

Re: QuadRooter: New Android Vulnerabilities
 
Somebody have already did it:
https://together.jolla.com/question/...by-quadrooter/

coderus 2016-08-08 14:31

Re: QuadRooter: New Android Vulnerabilities
 
wtf, where are exploits? i want to root my phone :)

Dave999 2016-08-08 14:59

Re: QuadRooter: New Android Vulnerabilities
 
What's is most secure: jPhones, iPhones or a random androids.

jalyst 2016-08-08 15:12

Re: QuadRooter: New Android Vulnerabilities
 
Had some complaints....

Keep it on-topic Dan, be respectful of the intent/focus of peoples threads.
Consider this your first & last non-infraction warning...

Not following this thread & most others, so rely on PMs or Post Reports of folks that play up.

Thank-you.

Dave999 2016-08-08 19:05

Re: QuadRooter: New Android Vulnerabilities
 
Instead of complaints. Can you bring anything good. When can we exclect Jolla to work this issue out with 3rd parties?

Or any link to patch.

https://www.checkpoint.com/downloads...rch-report.pdf

pichlo 2016-08-09 06:17

Re: QuadRooter: New Android Vulnerabilities
 
Dave, "exclect"?

Pardon the silly question, but what's all the fuss anyway? If I understand it correctly, all that QuadRooter can do is obtain a root access. Sure, it means it can alter or remove some of the preinstalled bloatware that you cannot remove by standard means but isn't it about it? All the sensitive stuff (your address book, photos, videos, other personal data, network access (that could cost you money if used maliciously)) is in the userland and you grant apps access to those willingly. At least on Android. On Sailfish, there is no such protection at all to start with.

tvicol 2016-08-09 06:48

Re: QuadRooter: New Android Vulnerabilities
 
QuadRooter it's about Qualcomm drivers (blobs) that are used by SailfishOS and Android at the same time.
My understanding is that a malicious user may gain root access at your SailfishOS as well. Or I'm wrong ?

juiceme 2016-08-09 07:23

Re: QuadRooter: New Android Vulnerabilities
 
The vulnerabilities seem pretty clear from the Checkpoint report, however this is also partly scareware; their business just is more or less bullying people into buying their intrusion deterring solution.

On a more-or-less standard Android device this attack might be rolled into a generic package that can take control of the device and either used to leak data or use it as a part of a botnet. However, if a poisoned application is run in Alien Dalvik on a SFOS device I believe it might have a hard time operating correctly since the Android layer is not similar to what is used in native Android devices.
It would probably (but I cannot be 100% sure of course) need to have a specially tailored version to be effective against SFOS devices. However, if such tailored attack is created, then it could also affect the native part of the system and not only the AD part of the system.

TLDR; probably you are safe in any case. If you do not install Alien Dalvik at all, you certainly are safe.


All times are GMT. The time now is 19:43.

vBulletin® Version 3.8.8