1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Qualcomm patches widespread vulnerability, but most phones will remain at risk

Discussion in 'CSO' started by RSS, May 5, 2016.

  1. RSS

    RSS New Member Member

    Qualcomm has patched a vulnerability in netd (network_manager), which for the last five years has left devices vulnerable to having their text message or contact databases compromised.

    Qualcomm sent OEMs a fix for this problem back in March, but the gap in Android versions on the market means that most users are going to be out of luck.

    In a blog post, FireEye says there are two ways to exploit the netd vulnerability, one of them is physical access to an unlocked device. The other, and likely path most attackers would chose, is to use a malicious app.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page