DroidForums.net is the original Verizon Android Forum! Registered Users do not see these ads. Please Register - It's Free!
Results 1 to 10 of 10

Thread: Security flaw allows hackers to lift data from SD cards in Google handsets.

  1. Administrator
    cereal killer's Avatar
    Member #
    88
    Join Date
    Oct 2009
    Location
    Austin
    Posts
    11,043
    Liked
    1559 times
    Phone
    Nokia Lumia 928
    Premium Member
    #1

    Security flaw allows hackers to lift data from SD cards in Google handsets.


    Member EvilDobe tipped us off on a article he found that reveals a serious security flaw in the built-in browser.

    While most of us don't store anything of vital importance on our SD cards it's still a vulnerability that Google responded to within 20 minutes of hearing about the exploit. thomascannon.net reported: " I notified the Android Security Team on 19-Nov-2010 and to their credit they responded within 20 minutes, took it seriously, and started an investigation into the issue"

    Full details are below:

    A security officer has stumbled across a serious vulnerability in the built-in browser of Android smartphones that might allow hackers to lift data from SD cards in the Google handsets.

    Thomas Cannon discovered the JavaScript-related vulnerability outside his normal job as a corporate security officer. The hole would allow malicious websites to snatch the contents of any file stored on the SD card of an Android smartphone, provided the name and directory path of a targeted file is known beforehand.

    It would also be possible to retrieve a limited range of other data and files stored on the phone using this vulnerability, as explained in an advisory and video here.

    The weakness arises because of a combination of factors that mean that when a file from a content provider is opened, the built-in Android browser will run JavaScript without prompting the user.

    JavaScript running in the context of a content provider can use xmlhttp (ie AJAX) requests to slurp up the contents of files (and other data). Redirects can then be used to post the data back to a malicious website.

    "I came across the vulnerability while doing some independent security research and writing a JavaScript-based demo to show a weakness in the way some applications share data via Android's Content Providers," Cannon explained. "I was surprised that an HTML page with JavaScript could query the content providers and realised that this could be triggered by a malicious site."

    Cannon has gone public ahead of a update to the Android OS he reckons will be necessary to fix the problem in order to warns users of the risk. He was keen to stress he has no anti-Android axe to grind, going so far as to praise Google for its handling of the issue this far.

    "Google's response so far has been excellent," Cannon said. "I would not release an advisory while there is a chance that users will be able to receive a patch in a reasonable time frame. However in this case I don't believe they will be able to.

    "This is not because of Google's response process, but because of the way handsets have to receive OS updates from manufacturers. I therefore believe it better that users are given a chance to protect themselves at an early opportunity, or at least understand the risks," he said.

    Cannon suggests that Android users should either disable JavaScript or use an alternative browser - such as Opera - to mitigate against the risk of attacks pending a more comprehensive fix from Google. Another means of mitigating the vulnerability would be to use a potentially vulnerable handset without an SD card.

    In a statement, a Google spokesman acknowledged the problem and said it was in the process of developing and releasing a patch.

    We've developed a fix for an issue in the Android browser that could, under certain circumstances, allow for accessing files on a user's SD card. We're working to issue the fix to our partners and open source Android.
    Google's security team told Cannon that they are aiming for a fix to go into Gingerbread maintenance release. "They don't have a time frame for OEMs to release the update though, which is an issue, as that is the weak link," he added.



    What do our readers think? No big deal or does this need to be fixed asap?












    Source:The Register
    Attached Thumbnails Attached Thumbnails Security flaw allows hackers to lift data from SD cards in Google handsets.-images.jpg  
  2.  
     
     
     
  3. Master Droid
    hoppermi's Avatar
    Member #
    102063
    Join Date
    Aug 2010
    Posts
    837
    Liked
    1 times
    Phone
    Droid Charge
    #2
    Thanks CK

    Sent from my Droid using Tapatalk
    Super AMOLED+.....FTW!
  4. Master Droid
    hoppermi's Avatar
    Member #
    102063
    Join Date
    Aug 2010
    Posts
    837
    Liked
    1 times
    Phone
    Droid Charge
    #3
    I wonder if maybe they can make the browser a market app, like they did for gmail and voice search, and fix the problem that way.

    Sent from my Droid using Tapatalk
    Super AMOLED+.....FTW!
  5. Senior Droid
    Kineo's Avatar
    Member #
    27075
    Join Date
    Jan 2010
    Location
    Out in the stix
    Posts
    177
    Liked
    1 times
    Phone
    HTC Thunderbolt soon GSIII
    #4
    Quote Originally Posted by hoppermi View Post
    I wonder if maybe they can make the browser a market app, like they did for gmail and voice search, and fix the problem that way.

    Sent from my Droid using Tapatalk
    ck is there a way we can give them this idea so it can go to all android versions at once?
    Galaxy SIII you are mine, I just wish you had a Holo theme.
  6. Senior Droid
    Kineo's Avatar
    Member #
    27075
    Join Date
    Jan 2010
    Location
    Out in the stix
    Posts
    177
    Liked
    1 times
    Phone
    HTC Thunderbolt soon GSIII
    #5
    Quote Originally Posted by hoppermi View Post
    I wonder if maybe they can make the browser a market app, like they did for gmail and voice search, and fix the problem that way.

    Sent from my Droid using Tapatalk
    ck is there a way we can give them this idea so it can go to all android versions at once?
    Galaxy SIII you are mine, I just wish you had a Holo theme.
  7. Droid Ninja
    Darkseider's Avatar
    Member #
    46256
    Join Date
    Mar 2010
    Posts
    1,869
    Phone
    Motorola Droid
    #6
    Meh. Unless the specific filename and location is known then it's no big deal. The only "known" files and locations are the default files placed on the SD card and that's it.
    OG Droid w/ Pete's GPA16 w/ stock Kernel using auto OC script. (retired)

    LG G2X w/ rooted 2.3.3 leak.

    It's OK for your Droid to be different. Just be supportive and reassuring and it will do just fine. It's when you or other people point at it or mock it for being different is when its' feelings get hurt. Just show it unconditional love regardless of its' differences and it will in turn reciprocate that love and loyalty.
  8. Droid
    iamlost87's Avatar
    Member #
    55567
    Join Date
    Apr 2010
    Posts
    56
    Phone
    Moto Droid
    #7
    Wouldn't you have to go to a malicious site in order to have that code execute? If you stick to trusted sites with filters on user-inputted code, id imagine you would be fine. If not, I guess its time to delete the pics of the woman. Lol
    Moto
    2.3!
    GPA13
    Pete's LV 600mhz Kernal
    Custom Compilation Framework(over 500 image changes/edits)
  9. Theme Developer
    bazar6's Avatar
    Member #
    15789
    Join Date
    Dec 2009
    Location
    MD
    Posts
    683
    Liked
    39 times
    Twitter
    Bazar6
    Phone
    GNex & Xoom & OG Droid
    DroidForums.net Theme Developer
    Premium Member
    #8
    Quote Originally Posted by iamlost87 View Post
    If not, I guess its time to delete the pics of the woman. Lol
    Haha, I'm sure she'd like that..

    This doesn't really concern me tho, I've used Dolphin Browser since the first day I got my phone, the Verizon rep told me about it. Since then, I've set DB as my default, which the article claims I have nothing to worry about if you're cruising that way. And, like someone already said, you'd have to go to a malicious site. I know they're out there, but how common of a site would it be, and if it's that sort of site, would you really want to go to it on your phone (anything I think is suspicious/malicious, I use my mac).
    Moto Droid 1 : Project Elite v4.2
    HTC Thunderbolt : Sold
    Samsung Droid Charge : Stock
    Moto Xoom Wifi : CM10.1
    Samsung Galaxy Nexus : CM10.2
  10. Master Droid
    HarshReality's Avatar
    Member #
    49956
    Join Date
    Mar 2010
    Location
    Indiana
    Posts
    383
    Liked
    1 times
    Phone
    Motorola Droid (ROOT)
    #9
    I wonder if the ROM boys will be doing an update just for the browser or release as a new version.... (Id prefer the first option)
    *Disclaimer: I tend to speak what pops in my head immediately when it happens. As a result when I type it, the idea sounds great.. more often than not I realize after the fact that I was incorrect or shoot down my own theories. Flaming me does no good as I most likely have done it myself already.
  11. Senior Droid
    DroidMastar2's Avatar
    Member #
    16622
    Join Date
    Dec 2009
    Location
    JERSEY
    Posts
    172
    Liked
    1 times
    Phone
    Moto Droid/iPhone 4
    #10

    Eh

    One false web click and you can end up on a malicious site... So it's not something that's hard to do... I never use the stock browser tho so It doesn't bother me. Also, I'm sure the malicious capabilities have been downplayed...
    I don't know where I would be without my Sexy DROID along side my Sexy IPhone 4, and my Sexy Atrix...

Links

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Similar Threads

  1. SECURITY FLAW! Google Voice Actions usable on lock screen!
    By barakaspeed in forum Motorola Droid 2
    Replies: 30
    Last Post: 11-18-2010, 07:36 PM
  2. Replies: 3
    Last Post: 08-02-2010, 07:38 PM
  3. Security flaw on the Droid
    By zenman77 in forum Android General Discussions
    Replies: 24
    Last Post: 01-13-2010, 08:32 AM
  4. Security flaw
    By charrry in forum Android General Discussions
    Replies: 1
    Last Post: 01-11-2010, 07:54 PM
  5. Replies: 1
    Last Post: 01-11-2010, 07:52 PM

Search tags for this page

encryption security flaws on sd cards
,
google voice security flaws
,
google voice vulnerability
,
how safe is data on sd card from phone hackers
,
how to (encrypt or protect or secure) sd card data android
,
how to protect data on sd card for phone
,
how to protect my htc from hackers?
,

how to secure my htc thunderbolt from hackers

,
protect my droid from hackers
,
vulneribility google voice
Click on a term to search our site for related topics.
Find us on Google+