Android USSD code Vulnerability discovered

Forums › Android › Android USSD code Vulnerability discovered

1 | 2 | 3

2800 posts

Uber Geek

#692174 27-Sep-2012 12:34

Alternatively, Root the phone, freeze\disable the phone application and use a 3rd party app like GoContacts.

This will probably cause the phone to no longer receive OTA updates though.

@KnightNZ

Backblaze

Backblaze Unlimited Backup. World’s easiest cloud backup. Get peace of mind knowing your files are backed up securely in the cloud (affiliate link).

old3eyes

8995 posts

Uber Geek

Subscriber

#692197 27-Sep-2012 13:05

Just tested this with my SGS2 running ICS. The Chrome browser brought up the IMEI but using Opera Mobile 12 it was clear which is my default browser.. So go and install Opera Mobile 12..

Regards,

Old3eyes

P1n3apqlExpr3ss

850 posts

Ultimate Geek

#692363 27-Sep-2012 17:09

Does anyone else find it strange how this comes out just as the iPhone 5 launches? Considering it is essentially as basic as a website using mailto links for whatever reasons

Linuxluver

5824 posts

Uber Geek

Trusted

Subscriber

#692379 27-Sep-2012 17:48

karit: I happens on my Nexus One with 2.3.6.

https://dylanreeve.posterous.com/remote-ussd-attack has a link to http://dylanreeve.com/phone.php which will utilise the same security flaw but show you the IMEI number instead of wiping your phone. This will indicate if you are at risk when you visit that URL on your phone.

Current mitigation is to install an alternate dial e.g. https://play.google.com/store/apps/details?id=kz.mek.DialerOne is suggested in link above and is what I currently have in place as a mitigation strategy.

Now just waiting for the QR codes and dodgy links to be placed around the place and start wiping phones. Hopefully this is exploited heavily and in the media so the Cellcos and Google start doing updates. Even minor patches e.g. 2.3.7 for instance. From what I read they fix/patch was written three months ago.............

My LG Optimus 3D Max (running stock Android v2.3.6) is NOT vulnerable to attack. Good to know. :-)

_____________________________________________________________________

I've been on Geekzone over 16 years..... Time flies....

joff_nz

446 posts

Ultimate Geek

#692469 27-Sep-2012 20:21

My bone stock Telecom sgs3, when visiting the above link brings up the dialler but doesn't input any numbers. Should I be worried?

gzt

15221 posts

Uber Geek

Lifetime subscriber

#692476 27-Sep-2012 20:36

juha: I've got to say given the number of affected devices - and we don't yet know what a creative attacker can do with USSD codes that vary from device to device - the industry response has been remarkably casual. Good on Samsung for stepping up and issuing patches, but what about the rest?

It is not good but this is the normal response. This has been the standard practice so far. In this case appearances are worse because any phone user can easily understand it, because it is related to a user function performed by phone UI.

Pock

156 posts

Master Geek

#692485 27-Sep-2012 20:49

Tried it on my galaxy s2, the default browser did it, but opera didn't.

matisyahu

1585 posts

Uber Geek

Trusted

#692575 28-Sep-2012 02:02

And once again we have carriers deliberately sabotage Android - Yes they're dramatic words but honestly, give the scope of such a security blunder I would have thought that the carriers would be talking to Samsung to get the updates out the door asap without any delays.

"When the people are being beaten with a stick, they are not much happier if it is called 'the People's Stick'"

Laptop: MacBook Air (Apple M2, 24GB RAM, 512GB SSD)

Desktop: Apple Studio, Studio Display (Apple M1 Max, 32GB RAM, 512GB SSD)

Phone: Nothing Phone (12GB RAM, 256GB Storage, Nothing OS 2.0.2), Google Workspace

Other: UniFi AP AC HD, UniFi Dream Machine, Apple TV 4K 128GB, Firefox

johnr

19282 posts

Uber Geek
Inactive user

#692576 28-Sep-2012 02:10

If anyone is that worried about it just do a backup of the data on your handset

matisyahu

1585 posts

Uber Geek

Trusted

#692578 28-Sep-2012 02:15

johnr: If anyone is that worried about it just do a backup of the data on your handset

Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.

"When the people are being beaten with a stick, they are not much happier if it is called 'the People's Stick'"

Laptop: MacBook Air (Apple M2, 24GB RAM, 512GB SSD)

Desktop: Apple Studio, Studio Display (Apple M1 Max, 32GB RAM, 512GB SSD)

Phone: Nothing Phone (12GB RAM, 256GB Storage, Nothing OS 2.0.2), Google Workspace

Other: UniFi AP AC HD, UniFi Dream Machine, Apple TV 4K 128GB, Firefox

johnr

19282 posts

Uber Geek
Inactive user

#692579 28-Sep-2012 02:50

Drama Queen

karit

84 posts

Master Geek

#692647 28-Sep-2012 08:19

johnr: If anyone is that worried about it just do a backup of the data on your handset

Seriously that is VF response? I am so glad I am no longer with you.

Will you be increasing everyone data plans to allow for realtime backup of everything?

If there is a hole in Windows I am sure MS wouldn't say make sure you backup and leave it at that, they would release a patch and all the ISPs would heavily encourage their userbase to update as quickly as possible.

Carriers say it might break our network (or bloatware) can someone please post me to a link where the firmware on a phone had broken a cell network? As I don't know of any instances and currently this is FUD and my assumption is it more about getting people to buy new phones than "protecting" their network kit. I challenge you to prove me wrong. Preferable with an Android example; a 1g phone example from the 80s won't really cut it.

old3eyes

8995 posts

Uber Geek

Subscriber

#692893 28-Sep-2012 13:35

kawaii:
johnr: If anyone is that worried about it just do a backup of the data on your handset

Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.

I believe it's not only a Samsung thing..

Regards,

Old3eyes

karit

84 posts

Master Geek

#692899 28-Sep-2012 13:40

old3eyes:
kawaii:
johnr: If anyone is that worried about it just do a backup of the data on your handset

Why don't' the carriers pull finger and approve the fix straight away? if the confidence in Samsung releasing an update that doesn't screw things up is that low then maybe questions should be asked whether the carriers should sell Samsung in the first place given the lack of confidence said organisations have in Samsung's own QA process.

I believe it's not only a Samsung thing..

Reading more it appears the running of codes is widespread across Android version, but the particular factory reset code only appears to be on a sub set of Samsung phones. (And will be that way until the reset codes for other phones are found)

johnr

19282 posts

Uber Geek
Inactive user

#692907 28-Sep-2012 13:51

karit:
johnr: If anyone is that worried about it just do a backup of the data on your handset

Seriously that is VF response? I am so glad I am no longer with you.

Will you be increasing everyone data plans to allow for realtime backup of everything?

If there is a hole in Windows I am sure MS wouldn't say make sure you backup and leave it at that, they would release a patch and all the ISPs would heavily encourage their userbase to update as quickly as possible.

Carriers say it might break our network (or bloatware) can someone please post me to a link where the firmware on a phone had broken a cell network? As I don't know of any instances and currently this is FUD and my assumption is it more about getting people to buy new phones than "protecting" their network kit. I challenge you to prove me wrong. Preferable with an Android example; a 1g phone example from the 80s won't really cut it.

No it's JohnR response!

Sure we have Blocked certain handsets that have caused high I levels on our network / Cells, If you want to get into the nitty gritty of things bring it on!

1 | 2 | 3