Samsung Galaxy S3 bug: other Android handsets at risk, researcher says
Summary: The security researcher who disclosed a Samsung Galaxy S III flaw that could trigger an unwanted reset has said other handsets could be susceptible to the problem, including the HTC One Series and Motorola Droids.
A number of Android smartphones could be vulnerable to a bug that lets outsiders remotely tamper with the device, according to the security researcher who demonstrated a factory reset exploit on the Samsung Galaxy S3.
Ravi Borgaonker said the HTC One Series, Sensation, Sensation XL, Sony Ericsson's Xperia series, some Motorola Droids, the Samsung Galaxy S series and "possibly others" could all be vulnerable to remote wipe or permanent destruction of the SIM card — if they haven't been updated since June.
"[The] vulnerability is in the Android dialer, so one can exploit it using a malicious link, or write a malicious app that can invoke TEL intent to execute USSD codes," Borgoanker noted on Friday.
Borgaonker said that the Android Security group was informed of the exploit in June and began the process of patching it one week later, so handsets that haven't been updated since that time should be the only ones still vulnerable.
As with the previous case, the problem lies in the way the phones handle some USSD codes (Unstructured Supplementary Service Data). These are generally used by network operators to perform operations such as topping up credit or to deliver one-use passwords or PIN codes; they can also be used to configure the phone.
However, Borgoanker said that some special USSD codes do not need the phone user to take action to invoke certain functions. Others can, with one click, "kill the SIM card permanently" within four seconds.
He added that all Android devices running Android 2.3.x (Gingerbread), 3.x (Honeycomb), 4.0.x (Ice Cream Sandwich) and 4.1.x (Jelly Bean) are vulnerable to this flaw if they had not been updated since June.
However, he added that only Samsung devices that haven't been updated are vulnerable to being remotely wiped to a factory reset status, as opposed to a permanent wipe of the SIM card.
Earlier this week, Samsung said it has already fixed the bug in the Galaxy S III, but it has not clarified whether other handsets are still vulnerable.
On Friday, HTC too said its handsets have been taken care of.
“We are aware of the potential USSD vulnerability that's been reported and had already taken measures to address this issue on our devices prior to the public disclosure of this vulnerability," the company said. "While our devices do not support a USSD code to factory reset option, we always recommend that customers avoid modifying or rooting their device in order to preserve the device security measures in place."
Android-backer Google had not responded to a request for comment at the time of writing.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
Wow what a shocker, an android security bug. Not samsung, not touchwiz
Malware on Androids
Good luck on that
paper map
please tell us about waze
re: "Don't forget to bring a paper map when navigating to the Apple store!"
And, hey, guy (up top of Comments).
By the time you get an iPhone or Win phone, the Android phones will be FIXED and those "other" phones will probably have problems discovered by then too.
"Stay with what you intellectually believe in (not some !$#%^^* advestizement) because everything has problems, even people". No kidding
Wow, a shocker
Get real.
How many Android owners are not going to keep their devices updated when they can? It's like a person using Windows not keeping thier software updated. Nor does this have anything to do with the framentation issue. So let's talk WP7/WP8 issues... how about some of those Johnny... Are WP7 devices still calling home to the Microsoft mothership?
Re: How many Android owners are not going to keep their devices updated whe
Full Disclosure
Don't rush to point fingers at yet
What should be concerning rather is how the producers respond to the threats. Samsung has dealt with it promptly, and I appreciate it. If anything I feel more confident in their prudence. Also, another factor is the scale or frequency of security vulnerabilities, which I must say that Android's "vulnerability" simply does not live up to the FUD, far from it. Sorry, but it's true. Millions of users are using Android and so far the only thing you can get is an rumor or report of an illegitimate app managing to sneak in once in a while, only to be reverted. Which is more than I can say for the experience of say like Windows malware and Apple's slow, if any, response to the Mac trojan that infected half a million computers (imagine what its response would be like if a similar bug was found in the iPhone).
It's all a matter of scale...
Free tool
Just wanted to let you know that we (Bitdefender) already released a tool on the Play Store that protects against this vulnerability. Now, once you would tap on a exploiting link, Bitdefender will intercept the wipe command and ask you to decide what to do next. You may, if unsure, dismiss the USSD command.
You can download it from: http://bit.ly/BD_USSD_Wipe_Stopper
/Alin Vlad
Global Social Media Coordinator at Bitdefender
update your galaxy s3
http://www.pinsmobile.com/content/samsung-kept-her-promise-and-released-its-galaxy-s-iii-android-411-jelly-bean-update