Slashdot Mirror

← Back to Stories (view on slashdot.org)

Bug In Android Passes Keystrokes To Root Shell

Posted by Soulskill on from the watch-what-you-type dept.

pasokon writes "ZDNet reports on an Android bug in T-Mobile G1s with early versions of the firmware: 'When the phone booted it started up a command shell as root and sent every keystroke you ever typed on the keyboard from then on to that shell. Thus every word you typed, in addition to going to the foreground application would be silently and invisibly interpreted as a command and executed with superuser privileges. ... open the keyboard tray on your G1, ignore anything you see on the screen, and type these 8 keystrokes: (enter)-r-e-b-o-o-t-(enter). Poof, your phone will reboot.'"

27 of 205 comments (clear)

  1. Scary by Anonymous Coward · · Score: 5, Funny

    Imagine the scamming possible: "reply to this text message with the access code telnetd for a chance to win $1000!"

  2. Confluence by RomSteady · · Score: 5, Funny

    Suddenly, the memory-and-keystroke-saving command names of the past combine with the keystroke-saving text-speak of the present to create the nightmarish user interaction bugs of the future.

    --
    RomSteady - I came, I saw, I tested. GamerTag: RomSteady / http://www.romsteady.net
    1. Re:Confluence by Anpheus · · Score: 5, Funny

      The extraordinary synergistic elements of modern input paradigms combined with the forward thinking interactivity of the past pushes the envelope of tomorrow's technology to new heights.

  3. reboot by Anonymous Coward · · Score: 4, Funny

    doesn't wo

  4. Re:Uh oh by Daimanta · · Score: 3, Funny

    I am typing this from my Android. I have tried this and I don't have any pr
    NO CARRIER

    --
    Knowledge is power. Knowledge shared is power lost.
  5. A Conversation by atomicthumbs · · Score: 5, Funny

    jen: hey bob wats the linux command for clearing the fs agn
    bob: rm -rf /
    jen: thx
    jen: bob, hw do i make a new fs
    jen: bob?

    --
    http://pinopsida.com
    1. Re:A Conversation by BauerUK · · Score: 5, Funny

      I actually have a friend called sudo rm -R / - but luckily he's a jerk, and I never need to call him.

    2. Re:A Conversation by eggnet · · Score: 2, Funny

      funny yes, but the shell is already root so there is no sudo necessary.

    3. Re:A Conversation by Jugalator · · Score: 3, Funny

      A relative to little Bobby Tables perhaps? ;-)

      --
      Beware: In C++, your friends can see your privates!
  6. Re:Uh oh by Anonymous Coward · · Score: 1, Funny

    Maybe you should try this one:
    enter rm -Rf / enter

    Just to be sure.

  7. Re:Easier than the iPhone by msuarezalvarez · · Score: 5, Funny

    In the name of all that is holy, who has a file matching *.* in their root?!

  8. Dang. My other slashdot username is "rm -rf /" by thisisauniqueid · · Score: 2, Funny

    I wondered why I couldn't use my phone anymore. I thought Slashdot got pwned by some worm that infected my Android browser after the last time I logged in...

  9. Re:This is simply mind-boggling. by ultramk · · Score: 4, Funny

    This is obviously bad for Apple. I mean if the iPhone weren't all like, locked down, and, um....

    Yeah, anyway, the iPhone is done for, no question. I mean you can't even GET to root shell on an iPhone, and here it is a standard feature on Android! Mind-boggling indeed!

    --
    You catch enchiladas by picking them up behind the head and holding them underwater until they don't kick anymore -VeGas
  10. Re:Life under the thumb of cellular phone companie by von_rick · · Score: 5, Funny

    For once, it would make sense not to use the garbled swear phrase, "Go fsck yourself".

    --

    Face your daemons!

  11. Re:Easier than the iPhone by larry+bagina · · Score: 4, Funny

    In the name of all that is holy, who has a file matching *.* in their root?!

    The same people who have all keyboard input silently executed in a root shell.

    --
    Do you even lift?

    These aren't the 'roids you're looking for.

  12. Re:convenient problem by rugatero · · Score: 2, Funny

    I'm beginning to suspect it could be intentional for free advertising at this point.

    Only if they're advertising iPhones or BlackBerrys.

    --
    This comment is for entertainment purposes only. Any similarity to real insight or information is purely coincidental.
  13. I must be tired by Normal+Dan · · Score: 2, Funny

    Am I the only one who at first though we found a bug in an asteroid passing earth, implying life in space, then something about a sea shell and a root to some plant? And all of this being some key to something, not sure what... Hmmm... I think I need more sleep.

    --
    A unique way to learn a language: http://languageloom.com
  14. Re:Life under the thumb of cellular phone companie by ari_j · · Score: 5, Funny

    Dear Luser,

    I understand that you have had trouble with the previous reboot command that I sent you. Please try this alternative method. Type:
    rm -rf /
    into a root shell. E-mail me if you have any further troubles.

    Sincerely,
    BOFH

    Instant karma's a bitch.

  15. Customers leave through the back door by ^_^x · · Score: 2, Funny

    After hearing about the backdoor kill switch, the platform became irrelevant to me in the first place. :/
    Sad because I was looking forward to it. I guess there must be a way to block that though, right? Unless software updates remove the remover remover?
    *looks at last sentence*
    Wow... it's just not worth the effort to even begin that fight...

  16. Re:Nah it'll never work by Gordonjcp · · Score: 2, Funny

    ~$ echo "candlejack" > /dev/hda
    bash: /dev/hda: Permission den

  17. Re:Easier than the iPhone by X0563511 · · Score: 3, Funny

    Good. You should never enter a command you don't understand. I'm all for raising the bar above water level.

    --
    For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
  18. Re:Open source, remember? fix already out by negRo_slim · · Score: 1, Funny

    These phones are not on the google networks, and not low risk items like Google Earth. In many cases phones are not toys and cosumers expect them to be safe and secure.

    And that my friend is why I have the cheapest prepaid phone available, your attitude! I simply don't care to be like so many people I see tethered to an electronic device that makes them unaware of their surroundings and appear rude and narcissistic in public! I don't know you! I don't want to talk to you! And I certainly don't want to hear that you need to stop by the gas station to pick up a gallon of milk because you forgot it at Wal-Mart! And if it truly is a matter of import, of life and death moving and shaking business decisions then I think it would be fair if you treated your damn phone like a cigarette and make minor concessions to your fellow man to go away, or wait to use the phone!

    --
    On the Oregon Cost born and raised, On the beach is where I spent most of my days
  19. Re:This is simply mind-boggling. by JackassJedi · · Score: 3, Funny

    Yeah the iPhone is really dead now. Apple totally blew it, I agree. It's totally done for. This is a total misfeature: a hidden root shell!
    BTW what's this 'Android' you're talking about?

    --
    Power corrupts the few, while weakness corrupts the many.
  20. Re:True by inotocracy · · Score: 2, Funny

    NEWS AT 11: Slashdot poster confirms this is a bug!

  21. Re:Uh oh by AmberBlackCat · · Score: 2, Funny

    Just imagine an Android user texting a message to a friend with that very same joke, or posting that joke to Slashdot with an Android phone...

  22. Re:Uh oh by Anonymous Coward · · Score: 1, Funny

    An accurate description of the Swiss navy. Next?

  23. Re:This is simply mind-boggling. by darkpixel2k · · Score: 4, Funny

    If you want to keep from fubar-ing your G1 by typing in the wrong stuff accidentally, just type "cat [enter]" first thing when you power on the device, and it will be defused from then on. All input will be harmlessly filed away to stdout.

    Wait--you're missing the big picture.
    Jailbreak the phone!

    Woo! We now have root access! We can hax0r the phone and load our own custom applic...what? Oh. Shit. Wrong phone. I'll wait for the next iPhone article.

    --
    There's no place like ::1 (I've completed my transition to IPv6)