Feeds

Another day, another nasty Android vuln

Memory corruption mess can brick your mobe

Boost IT visibility and business value

The security researcher who last year sucked thousands of IDs out of Apple's Developer Centre site has turned his gaze onto Android and turned up a bug that Trend Micro says is exploitable.

According to Ibrahim Balic, the bug causes memory corruption on Android 4.2.2 , 4.3 and 2.3 at least, but he suspects all Android versions may be affected.

That blog post, along with Balic's report that a malformed APK containing the bug crashed Google's Bouncer infrastructure, has now been confirmed in more – and better-written – detail by Trend Micro, here.

Trend writes: “We believe that this vulnerability may be used by cybercriminals to do some substantial damage on Android smartphones and tablets, which include “bricking” a device, or rendering it unusable in any way. In this context, the device is “bricked” as it is trapped in an endless reboot loop.”

Balic writes that if an attacker sets appname in strings.xml to a value greater than 387,000 characters, the bug is triggered. Trend Micro provides more detail, saying that the attack triggers memory corruption in Android's WindowManager (used to control the placement and appearance of windows).

An attacker needs only conceal a hidden Activity label in a package, Trend Micro says, to brick the target. If the attacker were to create malware that auto-started on power-up, the user's only option would be to completely wipe the device via a boot loader recovery.

Trend says the problem goes beyond Balic's post:

“PackageManager and ActivityManager are also susceptible to a similar crashing vulnerability. The critical difference here is that the user’s device will crash immediately once the malicious exploit app is installed. Note that the exploit app in this case does not need any special permission.”

Google has been notified of the issue. ®

Build a business case: developing custom apps

More from The Register

next story
Microsoft's MCSE and MCSD will become HARDER to win
Redmond decides it won't replace Masters certifications, so lesser certs get more rigour
Pinterest diversity stats: Also pale and male (but not as much as Twitter)
Cats'n'flowers site latest to admit white men rule its roost
MoJ IT workers 'n' pals extend strike action over privatisation
Fears of cuts when shared services gig moves to Steria
Pleased to meet you. I'm Joe Bloggs, MVP, vExpert, Cisco Champ
What a mouthful. Do customers care? Six title-holders quizzed
'Oh my god – Mark Zuckerberg wants to meet me'
'The Swiss have got no great interest in working with Apple'
Dammit, Foxconn: Where's our 1 MILLION-strong robot ARMY?
'Foxbots' just aren't good enough to take up the slack
Devs: Fancy a job teaching Siri to speak the Queen's English?
Spik propa lyk dis blud innit, ya get me?
Bankers bid to use offshore temp techies
WikiLeaks publishes Financial Services Annex to 50-nation Trade in Services Agreement
Hey! Where! are! the! white! women! at!? It's! Yahoo!
In non-tech jobs, that is – still mostly white men running Marissa Mayer's web biz
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.