(Warning) of touchwiz browser vulnerability (factory reset) - T-Mobile Samsung Galaxy S II SGH-T989

Found this today so heads up ppl we are at risk website can factory reset our device with one script http://m.androidcentral.com/major-s...hones-could-trigger-factory-reset-web-browser

WOW!

idbl_fanatic said:
WOW!
Click to expand...
Click to collapse
Time for a non-TW rom, lol.

desultory677 said:
Time for a non-TW rom, lol.
Click to expand...
Click to collapse
I just read it, It can broke your sim as well. So its not just a factory reset

Video and original post here
http://www.androidpolice.com/2012/0...eset-on-many-samsung-phones-running-touchwiz/
Please read this
Sent from my SGH-T989 using xda premium

Android PoliceMenu
[Update: Not Just Samsung] Exploit Could Force Factory Reset On Many Android Phones
Published on September 25th, 2012Written by: Cameron SummersonNextSkip to ResponsesPrevUpdate 2:*This exploit probably won't work on most*Galaxy S III's as long as they have the most recent OTA update, as*we demonstrate on video here.Update:*This issue is, unsurprisingly, a lot more nuanced than the video here lets on. The bug is based in the stock Android browser, is in fact quite old, and has been patched in more recent builds of Android - this is probably why Nexus devices running the most recent OTAs are unaffected. The fact is, this is not a Samsung problem, it's an old Android problem that has been known about for some time. More recent versions of Android avoid the wipe issue, but unpatched devices (like some Samsung phones) may still be vulnerable.Ouch. This is not the type of PR Samsung needs right now. Apparently a new vulnerability has been found that can force a factory reset with zero user interaction on many Samsung phones running TouchWiz. The bug is found within the stock TW browser, which allows direct execution of dialer codes like the one used for this exploit. This code is easily embedded into HTML, so one tap of a malicious link will reset the phone instantly. Other browsers, like Chrome, Dolphin, etc. aren't affected, so we highly recommend switching if you've been using the stock TouchWiz browser.At this time it's unclear exactly how many Samsung phones are affected, but so far users have been able to reproduce the issue on the*Galaxy S II*(assume all variants), the*Galaxy SAdvance, Galaxy Beam, and Galaxy Ace, among others. From what we're hearing, the international GSIII variant*should*be unaffected, and the AT&T version was updated with a patch for this very exploit last week. It's unknown at this time whether or not the*Sprint, Verizon, and T-Mobile variants are susceptible.We'll keep you updated as more information comes to light.[The Verge,*Engadget]Categories:*News,*SamsungTags:*exploit,*factory reset,*Samsung,*TouchWiz,*vulnerabilitesShare Article** **Save to InstapaperNextBack to TopPrevMobile ThemeONOFF1 queries in 379.8 ms
Sent from my SGH-T989 using xda premium

http://forum.xda-developers.com/showthread.php?t=1904867
Sent from my SAMSUNG-SGH-T989 using xda premium

I found a test page on neowin, that uses the same exploit but shows ur IMEI instead to see whether you're vulnerable
http://haggistech.co.uk/USSDtest/
My CM9 **IS** vulnerable. WTF!

So I did the "test" website and if it is correct me on Eugene's asop build are at risk as well...hope the website is wrong.

Funny how before all the hackers (well the ones that are looking to exploit people, not the hardware for a benefit) were going after your pc, and now it's just as easy to go after your phone. I still don't know why someone would want to do this to a bunch of phones, but people are weird sometimes
It is kind of freaky knowing our phone is vulnerable, but then again, any time something new comes out, someone is going to try and hack it in a negative way. Grr, why people? Just develop ROM's, not exploits
Sent from my SGH-T989D using xda premium

I'm assuming AOKP is no exception to this? Basically anywhere the default browser exists right??
Edit : Tested the website and it popped open a dialer but displayed the digits needed to pop open the IMEI..does that still mean I'm vulnerable? AOKP Build 3.
Sent from my SGH-T989 using xda app-developers app

My dialer opened but no imei or ussd code appeared. Using stock rooted 4.0.4

Rekzer said:
I found a test page on neowin, that uses the same exploit but shows ur IMEI instead to see whether you're vulnerable
http://haggistech.co.uk/USSDtest/
My CM9 **IS** vulnerable. WTF!
Click to expand...
Click to collapse
i tried all the browsers for android, Stock, Chrome, Firefox, Dopehin, etc
They are all vulnerable, except for OPERA!!!
so, if you're the types that are paranoid, I'll suggest you to make Opera as the default browser in your phone
Sent from my SAMSUNG-SGH-T989 using xda premium

kitila said:
Found this today so heads up ppl we are at risk website can factory reset our device with one script http://m.androidcentral.com/major-s...hones-could-trigger-factory-reset-web-browser
Click to expand...
Click to collapse
Wow that's no bueno
Thanks for the heads up.

Tested Jedi mind trik V7... no good
I don't know whetehr the newer version is vulnerable, but if stock 4.04 has no problems I would think even the cooked rom based on it should be fine
---------- Post added at 08:31 PM ---------- Previous post was at 08:02 PM ----------
benti77 said:
Tested Jedi mind trik V7... no good
I don't know whetehr the newer version is vulnerable, but if stock 4.04 has no problems I would think even the cooked rom based on it should be fine
Click to expand...
Click to collapse
Installing DialerOne you block the exploit, infact android will ask you wich dialer use, so you just have to choose the new one.
The original dialer remains there to be used normally.
Waiting for new from my loved developer :good:

Noooo
read above
the hack / exploit / vulnerability only works if your browser is not patched
just avoid using a vulnerable browser then you wont have anything to worry about.
OPERA browser is not affected, tested them all.

AllGamer said:
Noooo
read above
the hack / exploit / vulnerability only works if your browser is not patched
just avoid using a vulnerable browser then you wont have anything to worry about.
OPERA browser is not affected, tested them all.
Click to expand...
Click to collapse
But how come i dont get anything? I have stock rooted 4.0.4

AllGamer said:
Noooo
read above
the hack / exploit / vulnerability only works if your browser is not patched
just avoid using a vulnerable browser then you wont have anything to worry about.
OPERA browser is not affected, tested them all.
Click to expand...
Click to collapse
thanks, but I really like using dolphin
even if has been a long long time since I last tried Opera on android...

AllGamer said:
Noooo
read above
the hack / exploit / vulnerability only works if your browser is not patched
just avoid using a vulnerable browser then you wont have anything to worry about.
OPERA browser is not affected, tested them all.
Click to expand...
Click to collapse
Are you sure it's just the browser? Has anyone tried using a ripped browser from the apparently patched S3 then? I'll give it a shot now.
Sent from my SGH-T989 using Tapatalk 2

From what I read the phone is only vulnerable if your IMEI shows on the phone dialer, correct. If so Dolphin is not vulnerable. Tested with latest version.

Related

[INFO] Flash support for Android 4.0 ICS will be out before end of 2011

** EDIT for new info **:
Flash for Android 4.0 Ice Cream Sandwich will be out before the end of 2011. There will be no Flash support for Android 5.0:
http://www.pocket-lint.com/news/43152/flash-for-android-4-end-2011-no-flash-for-android-5
The main reason why I switched to Android was it's Flash support. Finding out recently that ICS did not support Flash and that Adobe was discontinuing Flash development was very discouraging.
Google has confirmed that Flash is not yet operational in ICS, but Google is also confirming that Adobe will support Flash in ICS.
“Flash hasn’t been released for ICS yet. So as far as we know, Adobe will support Flash for ICS.” – Google
Click to expand...
Click to collapse
http://www.slashgear.com/google-con...e-cream-sandwich-for-the-time-being-19196702/
Although discouraging and disappointing at first, there is now hope.
So Flash Player doesn't even show up in the Android Market on the Galaxy Nexus but I thought that one can install the apk on the phone. It seems that this doesn't work either, according to other users who've already got theirs. e.g. http://forum.xda-developers.com/showthread.php?t=1351167
Half the bloody web uses Flash. How are we supposed to view those sites?
To be honest I'm glad there is no support at the moment and wish that it wouldn't come. I haven't missed it since upgrading to the Nexus and if anything browsing is faster!
has anyone tried side loading it
Flash is going to die in mobile platforms, and we should be pressing video stream websites to use html5, instead of crying about flash's death. Damn memory/cpu hog.
Sent from my GT-I9000 using Tapatalk
i dont know about you guys, but for me, more then half the web uses flash. The only reason im not getting iphone because of flash. The stream i always go to, uses flash. gonna wait a month, if they dont support flash on nexus, im getting sgs2
SGS2 will eventually get ICS and will have similar "problem"
uvarvu said:
To be honest I'm glad there is no support at the moment and wish that it wouldn't come. I haven't missed it since upgrading to the Nexus and if anything browsing is faster!
Click to expand...
Click to collapse
It's no problem at all to set the flash settings to "on demand " so you have the fast browsing experience and flash if you need it.
Sent from my HTC Desire using XDA App
i her simple apps like tweecaster and facebook do not work! is this true? wtf is going on?. not having flash is a bummer. at least we should have the option. volume issues, no flash, simple apps not working.. this is getting really discouraging
Because they aren't updated for ics I would say. And because the Nexus is the only ics device at the moment they are probably to lazy to do so.
Sent from my HTC Desire using XDA App
Nebucatnetzer said:
Because they aren't updated for ics I would say. And because the Nexus is the only ics device at the moment they are probably to lazy to do so.
Sent from my HTC Desire using XDA App
Click to expand...
Click to collapse
yea the apps issue i expected..same happened with nex 1 and nex s.. but the no flash and volume issue are real bummers
Who gives a s$&@ about Flash? DOA.
bmstrong said:
Who gives a s$&@ about Flash? DOA.
Click to expand...
Click to collapse
you keep running the Apple party line. the rest of us would prefer to have the option for when we need it.
Adobe Flash is currently #24 in the top (free) apps for Android. and the majority of the low reviews are from idiots using 50 dollar Cricket android phones.
don't like it? don't use it. no reason to come in here and spout nonsense.
Hopefully this will shut up the people who keep going on about no Flash support on the GN. It's a brand new hardware running a brand new software; of course there are going to be compatibility issues for early adopters.
Sent from my Galaxy Nexus using XDA App
There are allways apps that don't work with newer OS versions. Happens with iOs, too.
kms108 said:
has anyone tried side loading it
Click to expand...
Click to collapse
Several people have reported trying to sideload the latest flash apk for Honeycomb - it didn't work.
About the apps issue, how long is it before they usually get sorted out and ready for the latest OS (right now ICS). I know that the main reason I use my phone for is Facebook, Twitter, YouTube and Browsing.
I'm not guessing too long right?
Clancy_s said:
Several people have reported trying to sideload the latest flash apk for Honeycomb - it didn't work.
Click to expand...
Click to collapse
has anyone tried it on ICS, honycomb is for tablets, whiles ICS is for both tablets and smartphones, hopefully it works.
Faz20 said:
About the apps issue, how long is it before they usually get sorted out and ready for the latest OS (right now ICS). I know that the main reason I use my phone for is Facebook, Twitter, YouTube and Browsing.
I'm not guessing too long right?
Click to expand...
Click to collapse
If those 4 things are your main concerns it shouldn't be a problem. As far as I know Twitter works fine. Official Facebook app has always been pretty ass on the Android so if you can live with it before you can probably live with it now. YouTube is natively supported and apart from not having Flash the browser is blazing fast.
Sent from my Galaxy Nexus using XDA App
BiGMERF said:
yea the apps issue i expected..same happened with nex 1 and nex s.. but the no flash and volume issue are real bummers
Click to expand...
Click to collapse
Lack of flash is Adobe's fault, not Google's.

One unmentioned difference between fb27 and other ICS builds

One of the main things I noticed on the other builds is that they wouldn't play flash videos from full websites well at all. It would play them in slow motion. It seems as though, however, that they fixed that issue with fb27..... sort of. We can now watch the flash videos, but no browser can open them in full screen without crashing.
If you guys can, please try a few out and lemme know your findings. This would be a good bug to inform people about so everyone know what to look out for in the next builds.
Sent from my SPH-D710 using xda premium
Odd, but flash videos on full websites has worked for me since FB17 (I use Dolphin HD browser)...though you're right, the full screen bug has also been present since then -_-
hijewpositive said:
One of the main things I noticed on the other builds is that they wouldn't play flash videos from full websites well at all. It would play them in slow motion. It seems as though, however, that they fixed that issue with fb27..... sort of. We can now watch the flash videos, but no browser can open them in full screen without crashing.
If you guys can, please try a few out and lemme know your findings. This would be a good bug to inform people about so everyone know what to look out for in the next builds.
Sent from my SPH-D710 using xda premium
Click to expand...
Click to collapse
I have a fix for this but it is for the Galaxy S port of ICS. It's because the ICS browser is not "fully" HTML5 enabled. It can only deal with mobile optimised versions of flash sites. You need to flash the full Adobe flash drivers and module. If you send me your current build.prop details I will make you a flashable zip that will enable all flash sites to play in both mobile AND desktop modes
also Samsung are a long way off with a fix gathering by the look of their latest framework.jar file. It still doesn't have all of the classes for HTML5
Why anybody would EVER use flash for anything ever is beyond me
I just redesigned a furchtbar site that used flash objects and other junk and via asp.net (unfortunately the server was IIS ) and thanks to CSS3 and HTML 5 flash is a thing of the past.
An HTML 5 video player with flash fallback is a good choice. For everything else PHP,JavaScript,html , flex, etc no need for flash.
Its 2012 the best way to design a site is with the latest technologies of PHP HTML 5 , etc. Fall backs for older browsers is not that much extra work.
Sent from my SPH-D710 using Tapatalk
Damn, you guys are wayyy beyond me. I never thought of flash and html5 of being inter-related that way. I always assumed that flash and html5 were like Pepsi and Coke (similar but made by different companies to establish a competition and offer a variety).
And i never thought of flash as something of that past. How it html5 more superior than flash?
Sent from my SPH-D710 using xda premium
I only hear iPhone fanboys talk like that because iPhones don't have flash. So nobody should use it.
hijewpositive said:
Damn, you guys are wayyy beyond me. I never thought of flash and html5 of being inter-related that way. I always assumed that flash and html5 were like Pepsi and Coke (similar but made by different companies to establish a competition and offer a variety).
And i never thought of flash as something of that past. How it html5 more superior than flash?
Sent from my SPH-D710 using xda premium
Click to expand...
Click to collapse
Well, for one thing it's a standard supported directly by the browser, while Flash is a proprietary add-on made by Adobe. HTML5 has the potential to be faster and more secure, plus standard across any devices that support HTML5 standards. It IS considered the future and is definitely the direction everyone's shifting. Even Adobe's shifting focus to HTML5 tools over Flash ones.
Flash finally works in fb27 for me. I also notice that when the browser is done rendering it wontt show the whole webpagee until I start scrolling down.
One of the big differences is the modem, it's great. Where I currently am I've never gotten more than 1mb, tested this morning and got this!
Sent from my SPH-D710 using XDA

Adobe Drops Flash Support For Android

You guys don't even need to hit my thanks button because this helps no one.
http://www.pcmag.com/article2/0,2817,2406507,00.asp
Sent from my HTC One X using xda premium
Old knews but still very unfortunate Flash works quite well on Android and html5 still isn't ready for the big time and there is a lot of flash still out there on the web
godutch said:
Old knews but still very unfortunate Flash works quite well on Android and html5 still isn't ready for the big time and there is a lot of flash still out there on the web
Click to expand...
Click to collapse
I don't understand when companies do stuff like this. I try to keep my company in as much as possible. I even endorse upcoming projects and products just for advertisement.
Sent from my HTC One X using xda premium
pretty stupid... but I'm sure, there will be another app, that will run flash things..
Super-Veloce said:
pretty stupid... but I'm sure, there will be another app, that will run flash things..
Click to expand...
Click to collapse
On linux there where a few alternatives but they just sucked....slow, buggy, missing many flash features etc...
When you upgrade to JB from ICS if you had flash installed you still had it. Or you could sideload the app.
ste1164 said:
When you upgrade to JB from ICS if you had flash installed you still had it. Or you could sideload the app.
Click to expand...
Click to collapse
probably yes but I have seen flash break many times even after minor android point releases, so by 4.1.2 it could be even, reduced to iPhone level
Its not the worst thing ever. I never have had a need for flash on my iPhone (obviously) or my android devices.
It's very old news, there's no flash in Chrome for android. This is actually very good news imo. Web developers, myself included, spent years creating crazy hacks to make things work in ie6. About 4 years ago a small group realized that as long as that happened there was no incentive for ie6 users to upgrade. Slowly it became more common to display a warning to ie6 users only using...
<!--[if lte ie6]-->
This has resulted in a huge reduction in use of ie6.
Flash is as dead as ie6 but as long as browsers keep supporting it people will keep using it. Advancement in web development technology has always been hampered by the idea that we must keep supporting old technologies.
Adobe are leading the way in html5 authoring tools and feel the alternative already exists, I agree.
HTML5 is absolutely ready for primetime. The W3C's definition that it isn't has to be seen in context, it's not fully defined so officially it is not ready, real world usage is effective though as most elements are defined and it adequately replaces flash and xhtml. So far, all browsers with no flash support are pretty good with HTML5 so its simple enough to code fall backs both ways so some see flash and some see html5 depending on capability. I recently created a video gallery for a client that does this, as a result the video player falls forward (as it were) to HTML5 when the browser is capable, thus videos can be viewed on iDevices and Android.
VIIRU§ said:
You guys don't even need to hit my thanks button because this helps no one.
http://www.pcmag.com/article2/0,2817,2406507,00.asp
Sent from my HTC One X using xda premium
Click to expand...
Click to collapse
Like has been said, old news, but still pretty damn awesome! *dances anti-flash dance*
Hope flash can now finally go and die.
somehow i agree with adobe dropping flash. flash doesnt run well on mobile phones, and it's laggy even if it does run.
shiningarmor said:
somehow i agree with adobe dropping flash. flash doesnt run well on mobile phones, and it's laggy even if it does run.
Click to expand...
Click to collapse
But html5 is even laggier, try for yourself on your desktop with youtube videos. You can enable html5 or flash in the "try something new"(or something like that, mine is in dutch( menu all the way at the bottom of the main page
godutch said:
But html5 is even laggier, try for yourself on your desktop with youtube videos. You can enable html5 or flash in the "try something new"(or something like that, mine is in dutch( menu all the way at the bottom of the main page
Click to expand...
Click to collapse
Not true, as a programming language html5 is way more efficient than flash (or actionscript). But just because it is a good language doesn't mean you can't write bad code in it.
Also, I for one have not had any issues with the implementation at YouTube.
Html5 working great on my pc on youtube.
Sent from my HTC One X using xda premium
shankly1985 said:
Html5 working great on my pc on youtube.
Sent from my HTC One X using xda premium
Click to expand...
Click to collapse
That's cause youtube converted over to HTML5 but so many other sites didnt
Sent from my HTC One X using xda premium

Samsung Galaxy S III remote data-wipe hack reportedly discovered (updated)

http://www.slashgear.com/samsung-galaxy-s-iii-remote-data-wipe-hack-discovered-25249061/
Little scary; of course if you only use reputable apps you probably have no concerns.
EDIT: yeah its a browser exploit; I hadn't had enough coffee this morning apparently.
Mr. QBKing77 has a video concerning this very thing ....
check it out here
Looks like they've put out an update anyway:
http://www.techradar.com/news/phone...galaxy-s3-and-co-to-block-killer-code-1099859
jdelano said:
http://www.slashgear.com/samsung-galaxy-s-iii-remote-data-wipe-hack-discovered-25249061/
Little scary; of course if you only use reputable apps you probably have no concerns.
Click to expand...
Click to collapse
Thanks for the heads up! :highfive:
I for one do not use NFC and rarely scan QR... But hopefully Samsung will take action on this security hole and patch it up ASAP, probably forcing them to send out JB sooner to the US variants together with the patch :fingers-crossed:
This can apparently be triggered by clicking a link on a malicious page too, not just NFC or QR codes. Not good.
However, from what I can see reading about this in a number of places, you're only susceptible if you're running TouchWiz... someone can correct me if I'm wrong but I believe this is a TouchWiz vulnerability really.
The thing I'm NOT 100% sure about is if you have to be RUNNING TouchWiz or if it can still be exploited if you're using a different launcher but still have TouchWiz installed.
---------- Post added at 01:52 PM ---------- Previous post was at 01:49 PM ----------
Hmm, reading further, I guess I'm not sure what they mean when they say "TouchWiz"... do they mean just the launcher or are the changes Samsung made to Android, aside from the launcher, considered TouchWiz too? In which case what launcher you're using may not matter, you are at risk of this exploit either way. Not sure, although now I'm thinking launcher DOESN'T matter. Anyone?
fzammetti said:
This can apparently be triggered by clicking a link on a malicious page too, not just NFC or QR codes. Not good.
However, from what I can see reading about this in a number of places, you're only susceptible if you're running TouchWiz... someone can correct me if I'm wrong but I believe this is a TouchWiz vulnerability really.
The thing I'm NOT 100% sure about is if you have to be RUNNING TouchWiz or if it can still be exploited if you're using a different launcher but still have TouchWiz installed.
---------- Post added at 01:52 PM ---------- Previous post was at 01:49 PM ----------
Hmm, reading further, I guess I'm not sure what they mean when they say "TouchWiz"... do they mean just the launcher or are the changes Samsung made to Android, aside from the launcher, considered TouchWiz too? In which case what launcher you're using may not matter, you are at risk of this exploit either way. Not sure, although now I'm thinking launcher DOESN'T matter. Anyone?
Click to expand...
Click to collapse
I believe they are referring in some point to the TW dialer, since they mention a dial code that is present in AOSP dialer and the user can simply cancel before it goes out, in the case of TW dialer it automatically goes through without the ability to cancel at all. Scary stuff!
"Only Samsung devices running TouchWiz appear to be affected, with basic Android only showing the code in the dialer screen but not running it automatically, Pau Oliva reports. Samsung’s default, though, is to dial the code automatically."
I think the article needs a bit more detail...
fzammetti said:
This can apparently be triggered by clicking a link on a malicious page too, not just NFC or QR codes. Not good.
However, from what I can see reading about this in a number of places, you're only susceptible if you're running TouchWiz... someone can correct me if I'm wrong but I believe this is a TouchWiz vulnerability really.
The thing I'm NOT 100% sure about is if you have to be RUNNING TouchWiz or if it can still be exploited if you're using a different launcher but still have TouchWiz installed.
---------- Post added at 01:52 PM ---------- Previous post was at 01:49 PM ----------
Hmm, reading further, I guess I'm not sure what they mean when they say "TouchWiz"... do they mean just the launcher or are the changes Samsung made to Android, aside from the launcher, considered TouchWiz too? In which case what launcher you're using may not matter, you are at risk of this exploit either way. Not sure, although now I'm thinking launcher DOESN'T matter. Anyone?
Click to expand...
Click to collapse
Not launcher. TW rom. As long as you are on a TW rom your susceptible. Aokp, aosp, etc won't work. You pretty much have to be able to use dialer codes because that's how it wipes your data, it automatically puts in the wipe data code
Sent from my SPH-L710 using Tapatalk 2
xCovErtWolFx757 said:
Not launcher. TW rom. As long as you are on a TW rom your susceptible. Aokp, aosp, etc won't work. You pretty much have to be able to use dialer codes because that's how it wipes your data, it automatically puts in the wipe data code
Click to expand...
Click to collapse
Yeah, I thought it might have just been TW launcher at first but after reading things a bit more I got what you said too... that's not cool
Problem was reported by a dev on Twitter to SamsungCarla and she escalated it to security unit.
So, according to AndroidPolice:
The bug is based in the stock Android browser, is in fact quite old, and has been patched in more recent builds of Android - this is probably why Nexus devices running the most recent OTAs are unaffected. The fact is, this is not a Samsung problem, it's an old Android problem that has been known about for some time. More recent versions of Android avoid the wipe issue, but unpatched devices (like some Samsung phones) may still be vulnerable.
Click to expand...
Click to collapse
http://www.androidpolice.com/2012/0...eset-on-many-samsung-phones-running-touchwiz/
Guess it will take a while to get the true story.
poit said:
So, according to AndroidPolice:
http://www.androidpolice.com/2012/0...eset-on-many-samsung-phones-running-touchwiz/
Guess it will take a while to get the true story.
Click to expand...
Click to collapse
That's interesting because it says to me that just disabling the default browser, as I've done since I use others, should avoid the issue... that'd be my conjecture anyway... but I'm NOT willing to test
Plus, that link also has an update saying the latest OTA for the GSIII don't suffer this problem... but that's a pretty nebulous statement, vis a vis, does it mean the latest Sprint OTA for example, or does it mean the GB for international models that started rolling out in Poland?
You're definitely right, the true story seems to be something we're still waiting on
On android police they also say that the AT&T doesn't have it, it got patched last week. Maybe LI3 fixed this.
Sent from my SPH-L710 using xda app-developers app
Nothing to see here people. This is not an exploit, but a feature called S-Reset.
Sent from my Nexus 7 using Tapatalk 2
hayabusa1300cc said:
Nothing to see here people. This is not an exploit, but a feature called S-Reset.
Sent from my Nexus 7 using Tapatalk 2
Click to expand...
Click to collapse
ROFL!!! :highfive:
add QBKing's video link to op
check it out; QB King does a really nice video showing you just how this happens.
This has apple written over it
Apple just give up the IPHONE sucks deal with it.
Tried the test site on QBKings video and nothing happened except the dialer opening. (Stock rooted LG8)
jamcar said:
On android police they also say that the AT&T doesn't have it, it got patched last week. Maybe LI3 fixed this.
Sent from my SPH-L710 using xda app-developers app
Click to expand...
Click to collapse
Tried that link that shows imei from qbking on my gs3 with li3 and my wife's that's still running lg8 and it doesn't do anything. Think the latest softwares fixed that issue
Sent from my SPH-L710 using Tapatalk 2
I have a S3 running CM9, I tested this link http://dylanreeve.com/phone.php and my phone shows immediately my emei without any confirmation box !!
Well ppl make sure you all have a handy dandy nandroid just in case
Sent from my Sprint GS3
Samsung fixed it
I added a link to a story that says Samsung has fixed this (even though the S3 seems to be ok)
Yup, according to Engadget:
If you were worried about stumbling onto a malicious website and accidentally wiping your Samsung Galaxy S III or other TouchWiz smartphone or slate, you can probably breathe easy. It's likely you already have firmware on your device which isn't vulnerable to the so-called dirty USSD code, and if not, you can download it now, according to Samsung. The company issued the following statement on the matter: "We would like to assure our customers that the recent security issue concerning the Galaxy S III has already been resolved through a software update. We recommend all Galaxy S III customers download the latest software update, which can be done quickly and easily via the Over-The-Air (OTA) service." It turns out we couldn't reproduce the bug earlier as we already had the latest update, and you should probably check to see that you do, as well. Meanwhile, we're also checking to see if other Touchwiz devices have been patched, so don't forget to watch what you click.
Click to expand...
Click to collapse
http://www.engadget.com/2012/09/26/samsung-patched-dirty-USSD-vulnerability/
So it appears this is an old exploit that was patched long ago

[Warning] Malicious links affecting chrome and firefox on ICS

Saw this post on the SG3 board.
http://forum.xda-developers.com/showthread.php?p=31994166
Video by QBKing77 with explanation of this
http://www.youtube.com/watch?v=oPxOWXqj-Ss
Proof of concept:
Lennyuk said:
surely it depends if the browser is a system app or not?
If it is a system app chances are it has permissions to dial out, if not, it won't
EDIT:
If you are on an ICS rom please try this from whatever browsers you have installed and let me know which browser, if its a system or data app and what happens.
http://ninpo.qap.la/test/index.html
THAT LINK IS SAFE! IT TRIGGERS A SAFE USSD CODE NOT THE WIPE ONE
Click to expand...
Click to collapse
The link will launch your browser and from the browser the dialer opens and shows your MEID.
Tappin' Typin'
rovar said:
Saw this post on the SG3 board.
http://forum.xda-developers.com/showthread.php?p=31994166
Proof of concept:
The link will launch your browser and from the browser the dialer opens and shows your MEID.
Tappin' Typin'
Click to expand...
Click to collapse
Story from Android Central (pulled from my Twitter feed)
http://t.co/JpsZ5HZW
This is bad news folks... and if the factory reset one is done with an unsafe & unlocked recovery and kernel could mean triggering the bug = Partial or Full brick.
Samsung Galaxy Ace
Just tested this on a Galaxy Ace running CM7, the dialer was launched but the code did not work, bad news indeed for most (every?) samsung phone it seems
So apparently it's not just Samsung, and other browsers accept stock are fine? http://www.androidpolice.com/2012/0...eset-on-many-samsung-phones-running-touchwiz/
rovar said:
Saw this post on the SG3 board.
http://forum.xda-developers.com/showthread.php?p=31994166
Proof of concept:
The link will launch your browser and from the browser the dialer opens and shows your MEID.
Tappin' Typin'
Click to expand...
Click to collapse
E4GTUser94 said:
So apparently it's not just Samsung, and other browsers accept stock are fine? http://www.androidpolice.com/2012/0...eset-on-many-samsung-phones-running-touchwiz/
Click to expand...
Click to collapse
The AC article is saying it depends on the dialer. Seriously, how could you allow a factory reset via dialer and then allow it to be triggered via browser? That's a major bug and it needs to be squashed.
AC updated their article and is now hearing that JB builds for S3 may have this patched already. Also got a confirmation via Twitter from @SamsungSupport that this has been sent to the devs.
Well even the iPhone is mildly vulnerable as loading the proof page triggers a popup to call the number (pressing call does nothing though), and from the original thread having a different dialer still triggers the code (someone tried with GO Dialer iirc)
the feature in the browser is due to being able to tap a phone number and call someone. having dialer code to factory reset is stupid since its in the settings and recovery.
in other news you can find out more info at www.shabbypenguin.com/wont/wipe/your/phone.html
its safe, i promise
I just installed a second dialer, with none of them set as default so now i am prompted if a website puts that code into the frame. If you get prompted to launch dialer while visiting any site, of course you would just hit the back button. Temporary fix.
One can visit this site to test if their phone's dialer is vulnerable, I am running FI03 stock and surely enough it shows my IMEI code.
http://dylanreeve.com/phone.php <- just a site to test if you are vulnerable.
It showed mine and I'm on el29 GB
with stock browser
The code that's supposed to work on the S3 (*2676*3855#) doesn't work on the epic touch.
The factory reset dialercode for the epic/epic touch is *#767*3855#
nsxla said:
I just installed a second dialer, with none of them set as default so now i am prompted if a website puts that code into the frame. If you get prompted to launch dialer while visiting any site, of course you would just hit the back button. Temporary fix.
One can visit this site to test if their phone's dialer is vulnerable, I am running FI03 stock and surely enough it shows my IMEI code.
http://dylanreeve.com/phone.php <- just a site to test if you are vulnerable.
Click to expand...
Click to collapse
I am on recalked and it only opened my dialer. Dial code was blank and nothing was called.
Same here on Re-Calked 2.0
Blank dialer screen
Sent from my SPH-D710 using Tapatalk 2
cm9 and firefox/chrome/standard browsers all triggered MEID. I have two dialers installed so I had a step to select the dialer which I guess helps protect me.
Video link added to OP.
http://www.youtube.com/watch?v=oPxOWXqj-Ss
Kobridge stock tweaked FI03 rom, stock browser opened blank dialer.
Sent from my SPH-D710 using xda app-developers app
gatesmarch123 said:
Kobridge stock tweaked FI03 rom, stock browser opened blank dialer.
Sent from my SPH-D710 using xda app-developers app
Click to expand...
Click to collapse
Same on stock FI03, mainly because that specific code in those links don't necessarily pertain to our model but probably like an international version or the GS3
Sent from my SPH-D710 using xda premium
locoboi187 said:
Same on stock FI03, mainly because that specific code in those links don't necessarily pertain to our model but probably like an international version or the GS3
Sent from my SPH-D710 using xda premium
Click to expand...
Click to collapse
^^ This.
The dialer code for the e4gt is *#767*3855#
While the GS3 and Internation is *2767*3855#
So the sites that have to malicious frame in it for the other sgs2 models and s3 won't work on the epic touch.
Doesnt mean someone wont be imclusive and target muliple models...
Better safe than sorry
Tappin' Typin'
One could always target our device by using the same code that opens the dialer for the other devices but with our dialer code instead.
While it is unlikely, it is possible. Just be careful about what sites you are visiting. If it is something you are not familiar with, or it's not posted by a trusted source, don't click the link.
Sent from my SPH-D710 using xda premium
You'd think it would ask for something like the msl before doing a reset, for safety reasons, but I guess not.

Categories

Resources