Sign in to follow this  
Followers 0
omegavesko

Some ROMs may be vulnerable to the recent web browser hard-reset exploit.

4 posts in this topic

The recent hard-reset exploit from the SGS3 seems to be a vulnerability on other phones/ROMs as well.

You can check for it here: http://hugelaser.com...t.php?conf=true

If your phone displays your IMEI like in the image, you're vulnerable. Mine was taken in AOKP-CM9 Remix.

Q8tAb.png

Edited by omegavesko
0

Share this post


Link to post
Share on other sites

Got done on PA CM9

0

Share this post


Link to post
Share on other sites

It says that non-samsung phones are not vulnerable no matter what result is.

Anyway all roms based on 4.0.4 will have the same results since tbey use the same browser (webcore)

Edited by C3C0
0

Share this post


Link to post
Share on other sites

It says that non-samsung phones are not vulnerable no matter what result is.

Anyway all roms based on 4.0.4 will have the same results since tbey use the same browser (webcore)

That's true, since the hard reset code/number is Samsung-specific. Either way, automatically executing/calling tel: markup when embedded into an iframe is rather troubling.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

MoDaCo is part of the MoDaCo.network, © Paul O'Brien 2002-2016. MoDaCo uses IntelliTxt technology.