Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Buying anything on Amazon? Please use the Geekzone Amazon aff link.


View this topic in a long page with up to 500 replies per page Create new topic
1 | ... | 255 | 256 | 257 | 258 | 259 | 260 | 261 | 262 | 263 | 264 | 265 | 266 | 267 | 268 | 269 | 270 | 271 | 272 | 273 | 274 | 275 | ... | 376
877 posts

Ultimate Geek
+1 received by user: 2


  Reply # 691353 25-Sep-2012 21:06 Send private message

jeffnz: thanks integer yes wasn't sure so checked as there is the 'modified' in the settings as well but apparently you use triangle awway then flash stock rom so all good

Hmm seems like I'm wrong on the Triangle part.
It does reset the counters but does not reset the System Status.
It is still set to Custom.

My assumption is the recovery mode still custom. The best way toget rid of this is to do a full wipe and then install official ROM again to get rid of the status.

4324 posts

Uber Geek
+1 received by user: 330

Trusted

  Reply # 691439 25-Sep-2012 23:49 Send private message

Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629




Twitter: @nztechfreak
Blogs: AndroidNZ.net


4324 posts

Uber Geek
+1 received by user: 330

Trusted

  Reply # 691454 26-Sep-2012 00:29 Send private message

UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app




Twitter: @nztechfreak
Blogs: AndroidNZ.net


877 posts

Ultimate Geek
+1 received by user: 2


  Reply # 691459 26-Sep-2012 00:56 Send private message

NZtechfreak: UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app

Is it mainly effecting ICS or is it JB as well?

837 posts

Ultimate Geek
+1 received by user: 5


  Reply # 691483 26-Sep-2012 07:46 Send private message

Just grabbed the Polish JB release and installed it...works fine.

466 posts

Ultimate Geek
+1 received by user: 6


  Reply # 691495 26-Sep-2012 08:06 Send private message

IntegerIsNumber: 

HINTS:
For those who'd like to get Google Now to talk back the results then do this.
Setting > Language and region setting > Choose default language to US English.



 


yes it gets it working but it gives you weather in Fahrenheit etc because its USA centric.




466 posts

Ultimate Geek
+1 received by user: 6


  Reply # 691503 26-Sep-2012 08:15 Send private message

So who actually knows the differences between this official Polish release and the
[ROM]I9300XXDLIB[STOCK]-Deodexed*Zipaligned*Rooted*BusyBoxed that I installed and was talking about a few pages back?




877 posts

Ultimate Geek
+1 received by user: 2


  Reply # 691506 26-Sep-2012 08:25 Send private message

webup:
IntegerIsNumber: 

HINTS:
For those who'd like to get Google Now to talk back the results then do this.
Setting > Language and region setting > Choose default language to US English.



 


yes it gets it working but it gives you weather in Fahrenheit etc because its USA centric.

You can change weather and measurements to metric inside GoogleNow :)

Google Now > Setting > Google Now > Weather > Weather units > Celsius

4324 posts

Uber Geek
+1 received by user: 330

Trusted

  Reply # 691552 26-Sep-2012 09:50 Send private message

IntegerIsNumber:
NZtechfreak: UPDATE: looks like you are safe if browsing in Chrome (doesn't handle dialler in the browser). Also, revoking CALL_PHONE permissions would serve to block this attack within any HTML-rendering app

Is it mainly effecting ICS or is it JB as well?


All a bit uncertain right now I'm afraid. Best present work around is to install a second dialer which does not exhibit the auto-dialling response (Dialler One). Additionally if you don't set a default dialer for opening web-links you'll get the "select which app" dialog box, giving you another chance to back out of opening the link.




Twitter: @nztechfreak
Blogs: AndroidNZ.net


1444 posts

Uber Geek
+1 received by user: 42


  Reply # 691576 26-Sep-2012 10:32 Send private message

NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

817 posts

Ultimate Geek
+1 received by user: 37


  Reply # 691579 26-Sep-2012 10:46 Send private message

M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.

1444 posts

Uber Geek
+1 received by user: 42


  Reply # 691580 26-Sep-2012 10:53 Send private message

MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)

54 posts

Master Geek


  Reply # 691585 26-Sep-2012 11:02 Send private message

M_I_C_H_A_E_L:
MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)



Wondering if this issue isolated to only the mobile phones running on Android platform? Anyone know if there is a patch released for it? Cheers


4324 posts

Uber Geek
+1 received by user: 330

Trusted

  Reply # 691586 26-Sep-2012 11:03 Send private message

M_I_C_H_A_E_L:
MurrayM:
M_I_C_H_A_E_L:
NZtechfreak: Just a word of warning, completely unnecessary I'm sure (I'm positive no one would surf dodgy sites right?), but probably better if you know how someone can factory reset your S3 from a browser link:

http://forum.xda-developers.com/showthread.php?t=1904629


So what does this mean in "english" lol? Somebody can hack my phone if I click on a link I shouldnt of? Other than that im fine yes? :)

Actually you don't even need to click on a link because it works by inserting an iframe into a web page and the source of the iframe is the bad URL that includes a "tel:".  So just visiting the bad website is enough to trigger this.


Ok thanks. I never visit dodgy sites on my mobile so I should be sweet. Cheers mate :)


Problem is innocuous looking links with redirects, I would still take steps to avoid (at present looks like installing Dialer One works).




Twitter: @nztechfreak
Blogs: AndroidNZ.net


49 posts

Geek


  Reply # 691612 26-Sep-2012 11:50 Send private message

FROM XDA: I9300XXBLH1 is not vulnerable, XXDLIB is not vulnerable, I tested it with http://ninpo.qap.la/test/index.html and only lauched the dialer, nothing else.
Stock Samsung Browser, stock dialer.


From what I have read these latest roms still interpret the tel command they just dont execute it i.e. your dialer will pop up with the code in it but you have to press the send to execute. So I suggest anyone on previous roms to update because this exploit is becoming quite popular.

---

What JB modems are people using in Welly, I am getting disappointing reception and speeds compared to the T modem I used for the S2.

1 | ... | 255 | 256 | 257 | 258 | 259 | 260 | 261 | 262 | 263 | 264 | 265 | 266 | 267 | 268 | 269 | 270 | 271 | 272 | 273 | 274 | 275 | ... | 376
View this topic in a long page with up to 500 replies per page Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

Click Monday Deals
Created by mrtoken, last reply by Krishant007 on 24-Nov-2014 17:11 (25 replies)
Pages... 2


Gigatown winner town and plans
Created by freitasm, last reply by joker97 on 27-Nov-2014 08:04 (48 replies)
Pages... 2 3 4


Gull Employment Dispute.
Created by networkn, last reply by Geektastic on 26-Nov-2014 16:35 (142 replies)
Pages... 8 9 10


The Warehouse pulling R18 games and DVD's
Created by semigeek, last reply by mattwnz on 26-Nov-2014 16:13 (56 replies)
Pages... 2 3 4


Lollipop no more
Created by ronw, last reply by kiwitrc on 26-Nov-2014 13:44 (13 replies)

Knock off electronics in The Warehouse
Created by jpoc, last reply by openmedia on 26-Nov-2014 13:01 (13 replies)

Current Netflix payment method as of Nov 14 - Cant pay
Created by andynz, last reply by Dratsab on 26-Nov-2014 17:17 (34 replies)
Pages... 2 3


HP Stream 7 arrives
Created by gnfb, last reply by nathan on 27-Nov-2014 08:34 (21 replies)
Pages... 2



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.