Install App Install App

Stagefright security patch released by Google is flawed: Researcher

The researcher performed the test on an updated Nexus 5. He further claims that even the bug detector app fails to detect the flaw.

By Ajit Singh | Published 14 Aug 2015 15:00 IST
HIGHLIGHTS
  • The researcher performed the test on an updated Nexus 5. He also claims that even the bug detector app fails to detect the flaw.

Stagefright security patch released by Google is flawed: Researcher

Jordan Gruskovnjak, a security researcher with Exodus Intelligence, has discovered that the Stagefright security patch that was released by Google is flawed. Google has released the patch for Nexus earlier this month and claimed that it had fixed the issue. He further went on to say that even the Stagefright Detector App can’t detect the flaw. The app was developed by Zimperium, who had first reported the Stagefright bug.

Exodus Intelligence has said, “Along with the initial bug report, a set of patches to stagefright flaws were supplied and accepted by Google. One of these patches, addressing CVE-2015-3824 (aka Google Stagefright 'tx3g' MP4 Atom Integer Overflow) was quite simple, consisting of merely 4 lines of changed code."

The researcher performed the test on an updated Nexus 5 with the help of an mp4 file. During the testing, the Nexus 5 crashed. Exodus Intelligence has said that they have notified the Google about the flaw and the internet giant has accepted it. 

If you are unaware, the Stagefright bug affects the Stagefright multimedia player component and can affect any device running Android 2.2 (Froyo) or above. It lets the attacker to perform arbitary actions on the infected device. The dangerous thing is that the bug can be sent to any device simply by sending a malicious MMS file. Zimperium, the company who discovered Stagefright, has said that almost 50% of Android devices can trigger the vulnerability even without any interaction with the MMS, while the rest do so by simply opening the message. As for the numbers, approximately 950 million Android devices are vulnerable to the bug which comes out to be about 95% of the devices.

Stagefright bug is not the only threat Android users are facing, two researchers have recently revealed that hackers can remotely lift your fingerprints from Android devices.

You might also like to read: Is your Android phone data secure?

Ajit Singh
Ajit Singh

Email Email Ajit Singh

Follow Us Facebook Logo

Tags:
android stagefright bug android bugs android security
Install App Install App
Advertisements

Trending Articles

Advertisements

LATEST ARTICLES View All

Advertisements

Hot Deals View All

OnePlus Nord 2 5G (Blue Haze, 8GB RAM, 128GB Storage)
OnePlus Nord 2 5G (Blue Haze, 8GB RAM, 128GB Storage)
₹ 29999 | $hotDeals->merchant_name
Samsung Galaxy M21 2021 Edition (Arctic Blue, 4GB RAM, 64GB Storage) | FHD+ sAMOLED | 6 Months Free Screen Replacement for Prime (SM-M215GLBDINS)
Samsung Galaxy M21 2021 Edition (Arctic Blue, 4GB RAM, 64GB Storage) | FHD+ sAMOLED | 6 Months Free Screen Replacement for Prime (SM-M215GLBDINS)
₹ 12999 | $hotDeals->merchant_name
Samsung Galaxy M31 (Ocean Blue, 6GB RAM, 128GB Storage)
Samsung Galaxy M31 (Ocean Blue, 6GB RAM, 128GB Storage)
₹ 19999 | $hotDeals->merchant_name
Redmi 9 Power (Mighty Black 4GB RAM 64GB Storage) - 6000mAh Battery |FHD+ Screen | 48MP Quad Camera | Alexa Hands-Free Capable
Redmi 9 Power (Mighty Black 4GB RAM 64GB Storage) - 6000mAh Battery |FHD+ Screen | 48MP Quad Camera | Alexa Hands-Free Capable
₹ 11499 | $hotDeals->merchant_name
Redmi 9A (Nature Green, 2GB RAM, 32GB Storage) | 2GHz Octa-core Helio G25 Processor | 5000 mAh Battery
Redmi 9A (Nature Green, 2GB RAM, 32GB Storage) | 2GHz Octa-core Helio G25 Processor | 5000 mAh Battery
₹ 7299 | $hotDeals->merchant_name
DMCA.com Protection Status