One Article Review
| Source |  CSO |
|---|---|
| Identifiant | 1380743 |
| Date de publication | 2019-10-04 11:04:00 (vue: 2019-10-04 21:00:31) |
| Titre | Zero-day vulnerability gives attackers full control of Android phones |
| Texte | Attackers are reportedly exploiting an unpatched vulnerability to take control of Android devices and potentially deliver spyware. The flaw affects phones models from multiple manufacturers including Google, Samsung, Huawei, LG and Xiaomi.The vulnerability is a use-after-free memory condition in the Android Binder component that can result in privilege escalation. The flaw was patched without a CVE identifier in Dec. 2017 in the Linux 4.14 LTS kernel, the Android Open Source Project's (AOSP) 3.18 kernel, the AOSP 4.4 kernel and AOSP 4.9 kernel. |
| Envoyé | Oui |
| Condensat | 2017 affects after android aosp are article attackers binder can click component condition control cve day dec deliver devices escalation exploiting flaw free from full gives google here huawei identifier including kernel linux lts manufacturers memory models multiple open patched phones please potentially privilege project read reportedly result samsung source spyware take unpatched use vulnerability without xiaomi zero |
| Tags | Vulnerability |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.