Slashdot Mirror
Android Holes Allow Secret Installation of Apps
CheerfulMacFanboy writes with a link to Heise Online which says "'Security researchers have demonstrated two vulnerabilities that allow attackers to install apps on Android and its vendor-specific implementations without a user's permission. During normal installation, users are at least asked to confirm whether an application is to have certain access rights. Bypassing this confirmation request reportedly allows spyware or even diallers to be installed on a smartphone.' One vulnerability was identified when a security specialist analysed HTC devices and found that the integrated web browser has the right to install further packages (used to automatically update its Flash Lite plug-in). Attackers can exploit this if they have found another browser hole. 'Android specialist Jon Oberheide demonstrated another hole which involved misusing the Account Manager to generate an authentication token for the Android Market and obtaining permission to install further apps from there. However, this initially requires a specially crafted app to be installed on the smartphone. Nothing could be easier: Oberheide released the allegedly harmless "Angry Birds Bonus Levels" app into the Android Market and, upon installation, this app downloaded and installed three further apps ("Fake Toll Fraud," "Fake Contact Stealer," and "Fake Location Tracker") without requesting the user's permission.'"
How do I point my iphone at the Google store? isn't Google in safari? I really want to try the angry birds bonus level.
I dunno if you're trolling, but I'll bite... ASS, whole lotta ASS all up in your cunt. Fuckin up all that shit and cuntfuckin yourself fist first in the ass. YOUR SHIT IS IN YOUR ASS COMING OUT OF YOUR CUNT! Lol your shitass is cuntwiping all over the place, you shitty assfucker. What in the fuck is with your cuntface asslicker dickfucker brainstem? Is that why all the shit is coming from your cunt?
One convenient locations...in Africa.