1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Android Stagefright: The heart attack that never happened

Discussion in 'Network World' started by RSS, Aug 6, 2015.

  1. RSS

    RSS New Member Member

    Since Joshua Drake of Zimperium announced his talk at the Black Hat conference on Twitter, speculation in the blogosphere has been rampant.


    BLACKHAT USA 2015 Stagefright: Scary Code in the Heart of Android: https://t.co/oBZpiBFx1x by @jduck

    — Mobile Security (@Mobile_Sec) July 23, 2015

    If some of the claims were true, Android phones would be exploding into flames. Since the introduction of version 4.1 Jelly Bean, Android has been protected from buffer-overflow vulnerabilities such as Stagefright with Address Space Layout Randomization (ASLR). A glance at the chart below reveals that 90% of the Android devices are protected by ASLR. Drake's estimate of one billion Android devices affected by this vulnerability was inflated.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page