Sign in to follow this  
omegavesko

Some ROMs may be vulnerable to the recent web browser hard-reset exploit.

Recommended Posts

omegavesko    127

The recent hard-reset exploit from the SGS3 seems to be a vulnerability on other phones/ROMs as well.

You can check for it here: http://hugelaser.com...t.php?conf=true

If your phone displays your IMEI like in the image, you're vulnerable. Mine was taken in AOKP-CM9 Remix.

Q8tAb.png

Edited by omegavesko

Share this post


Link to post
Share on other sites
C3C0    1,434

It says that non-samsung phones are not vulnerable no matter what result is.

Anyway all roms based on 4.0.4 will have the same results since tbey use the same browser (webcore)

Edited by C3C0

Share this post


Link to post
Share on other sites
omegavesko    127

It says that non-samsung phones are not vulnerable no matter what result is.

Anyway all roms based on 4.0.4 will have the same results since tbey use the same browser (webcore)

That's true, since the hard reset code/number is Samsung-specific. Either way, automatically executing/calling tel: markup when embedded into an iframe is rather troubling.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

MoDaCo is part of the MoDaCo.network, © Paul O'Brien 2002-2016. MoDaCo uses IntelliTxt technology.