Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

View this topic in a long page with up to 500 replies per page Watch this topic Create new topic
1 | ... | 255 | 256 | 257 | 258 | 259 | 260 | 261 | 262 | 263 | 264 | 265 | 266 | 267 | 268 | 269 | 270 | 271 | 272 | 273 | 274 | 275 | ... | 376
851 posts

Ultimate Geek


  Reply # 691353 25-Sep-2012 21:06 Send private message quote this post

jeffnz: thanks integer yes wasn't sure so checked as there is the 'modified' in the settings as well but apparently you use triangle awway then flash stock rom so all good

Hmm seems like I'm wrong on the Triangle part.
It does reset the counters but does not reset the System Status.
It is still set to Custom.

My assumption is the recovery mode still custom. The best way toget rid of this is to do a full wipe and then install official ROM again to get rid of the status.

4029 posts

Uber Geek
+1 received by user: 180

Trusted

  Reply # 691439 25-Sep-2012 23:49 Send private message quote this post

Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629




Twitter: @nztechfreak
Blogs: AndroidNZ.net


4029 posts

Uber Geek
+1 received by user: 180

Trusted

  Reply # 691454 26-Sep-2012 00:29 Send private message quote this post

UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app




Twitter: @nztechfreak
Blogs: AndroidNZ.net


851 posts

Ultimate Geek


  Reply # 691459 26-Sep-2012 00:56 Send private message quote this post

NZtechfreak: UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app

Is it mainly effecting ICS or is it JB as well?

787 posts

Ultimate Geek
+1 received by user: 2

Subscriber

  Reply # 691483 26-Sep-2012 07:46 Send private message quote this post

Just grabbed the Polish JB release and installed it...works fine.

466 posts

Ultimate Geek
+1 received by user: 6


  Reply # 691495 26-Sep-2012 08:06 Send private message quote this post

IntegerIsNumber: 

HINTS:
For those who'd like to get Google Now to talk back the results then do this.
Setting > Language and region setting > Choose default language to US English.



 


yes it gets it working but it gives you weather in Fahrenheit etc because its USA centric.




466 posts

Ultimate Geek
+1 received by user: 6


  Reply # 691503 26-Sep-2012 08:15 Send private message quote this post

So who actually knows the differences between this official Polish release and the
[ROM]I9300XXDLIB[STOCK]-Deodexed*Zipaligned*Rooted*BusyBoxed that I installed and was talking about a few pages back?




851 posts

Ultimate Geek


  Reply # 691506 26-Sep-2012 08:25 Send private message quote this post

webup:
IntegerIsNumber: 

HINTS:
For those who'd like to get Google Now to talk back the results then do this.
Setting > Language and region setting > Choose default language to US English.



 


yes it gets it working but it gives you weather in Fahrenheit etc because its USA centric.

You can change weather and measurements to metric inside GoogleNow :)

Google Now > Setting > Google Now > Weather > Weather units > Celsius

4029 posts

Uber Geek
+1 received by user: 180

Trusted

  Reply # 691552 26-Sep-2012 09:50 Send private message quote this post

IntegerIsNumber:
NZtechfreak: UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app

Is it mainly effecting ICS or is it JB as well?


All a bit uncertain right now I'm afraid. Best present work around is to install a second dialer which does not exhibit the auto-dialling response (Dialler One). Additionally if you don't set a default dialer for opening web-links you'll get the "select which app" dialog box, giving you another chance to back out of opening the link.




Twitter: @nztechfreak
Blogs: AndroidNZ.net


1308 posts

Uber Geek
+1 received by user: 35


  Reply # 691576 26-Sep-2012 10:32 Send private message quote this post

NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

717 posts

Ultimate Geek
+1 received by user: 21


  Reply # 691579 26-Sep-2012 10:46 Send private message quote this post

M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.

1308 posts

Uber Geek
+1 received by user: 35


  Reply # 691580 26-Sep-2012 10:53 Send private message quote this post

MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)

54 posts

Master Geek


  Reply # 691585 26-Sep-2012 11:02 Send private message quote this post

M_I_C_H_A_E_L:
MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)



Wondering if this issue isolated to only the mobile phones running on Android platform? Anyone know if there is a patch released for it? Cheers


4029 posts

Uber Geek
+1 received by user: 180

Trusted

  Reply # 691586 26-Sep-2012 11:03 Send private message quote this post

M_I_C_H_A_E_L:
MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)


Problem is innocuous looking links with redirects, I would still take steps to avoid (at present looks like installing Dialer One works).




Twitter: @nztechfreak
Blogs: AndroidNZ.net


49 posts

Geek


  Reply # 691612 26-Sep-2012 11:50 Send private message quote this post

FROM XDA: I9300XXBLH1 is not vulnerable, XXDLIB is not vulnerable, I tested it with http://ninpo.qap.la/test/index.html and only lauched the dialer, nothing else.
Stock Samsung Browser, stock dialer.


From what I have read these latest roms still interpret the tel command they just dont execute it i.e. your dialer will pop up with the code in it but you have to press the send to execute. So I suggest anyone on previous roms to update because this exploit is becoming quite popular.

---

What JB modems are people using in Welly, I am getting disappointing reception and speeds compared to the T modem I used for the S2.

1 | ... | 255 | 256 | 257 | 258 | 259 | 260 | 261 | 262 | 263 | 264 | 265 | 266 | 267 | 268 | 269 | 270 | 271 | 272 | 273 | 274 | 275 | ... | 376
View this topic in a long page with up to 500 replies per page Watch this topic Create new topic








Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when new jobs are posted to our jobs board:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »

Trending now »
Hot discussions in our forums right now:

MH370 - Call for Search & Rescue Help
Created by DS248, last reply by Sideface on 17-Apr-2014 17:28 (735 replies)
Pages... 47 48 49


Forms of government for New Zealand
Created by charsleysa, last reply by Sidestep on 21-Apr-2014 11:26 (121 replies)
Pages... 7 8 9


why does the tax payer have to pay for the prince and princess' 6 star holiday?
Created by joker97, last reply by Geektastic on 17-Apr-2014 15:49 (67 replies)
Pages... 3 4 5


Whats the best wife friendly media centre?
Created by amorpeth, last reply by jonolynn on 19-Apr-2014 20:20 (14 replies)

Snap suffering Trans-Tasman congestion 18/04?
Created by Lias, last reply by NonprayingMantis on 19-Apr-2014 00:05 (26 replies)
Pages... 2


Help ! Home business connection and VDSL dead. yikes.
Created by Scotsman, last reply by Scotsman on 17-Apr-2014 21:10 (26 replies)
Pages... 2


galaxy s4 now on 4.4.2
Created by nzrock, last reply by Yabanize on 21-Apr-2014 11:14 (61 replies)
Pages... 3 4 5


TVNZ on Demand Jailbreak Detection
Created by TranceManNZ, last reply by hio77 on 18-Apr-2014 20:25 (12 replies)


Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.