Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4
1711 posts

Uber Geek

Trusted

  # 1362617 11-Aug-2015 09:42
Send private message

Galaxy S6 failed 1/6
Galaxy S4 Mini failed 3/6

2227 posts

Uber Geek


  # 1362640 11-Aug-2015 09:58
2 people support this post
Send private message

Note 4. Failed 2 of the 6. Because why not.

I won't expect a patch from Samsung within the next 6 months.

 
 
 
 


2226 posts

Uber Geek


  # 1362675 11-Aug-2015 10:52
Send private message

Nexus 4
Failed 3/6

Have not received the newest version of 5.1.1 yet via OTA. Not keen on flashing 

332 posts

Ultimate Geek

Trusted

  # 1362711 11-Aug-2015 11:25
Send private message

nzkiwiman: Nexus 4
Failed 3/6

Have not received the newest version of 5.1.1 yet via OTA. Not keen on flashing 


Just FYI - my update for Nexus 4 (5.1.1 LMY48I) was waiting for me this morning, so hopefully you won't be too far away.





"It is useless to attempt to reason a man out of what he was never reasoned into."
— most commonly attributed to Jonathan Swift, author/theologian

564 posts

Ultimate Geek

Trusted

  # 1362823 11-Aug-2015 13:16
Send private message

Honor 6, 3/6 failed.




Apple Certified Support Professional (ACSP) 10.10, MCITP 2008

707 posts

Ultimate Geek


  # 1362873 11-Aug-2015 14:49
One person supports this post
Send private message

Based on the posts so far, it is pretty consistent with the claim that over 90% of Android smartphones are affected...

1523 posts

Uber Geek


  # 1363002 11-Aug-2015 17:14
Send private message

If you are rooted you can edit your build.prop file to disable the stage fright media player. Or you can buy an app that will do it for you.

https://play.google.com/store/apps/details?id=devnull.stagefrightpropchanger

Or [still rooted] you can uninstall your default mms handler from system and install 3rd party messaging app (textra chomp etc) that has been patched, to remove stagefright vulnerability.

The other suggested line of defence is to obfuscate your mms apn. I.E. disable mms. However it is noted that other apps can still access the stagefright media player, malicious coders could still potentially cause havoc.

My note2 is vulnerable, I'm rooted, but I feel I'm more likely to stuff up the build prop file than I am to get stage frightened. I hate mms anyway so I think I'll try disabling mms.

 
 
 
 


Mr Snotty
8763 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

1523 posts

Uber Geek


  # 1363130 11-Aug-2015 19:42
Send private message

After doing a bit more reading tonight it seems that even doing a build.prop modification does not change the stagefright vulnerability. The recommended interim mitigation including for unrooted phones is:

1. Disable MMS automatic download in all apps that handle SMS
2. Use Firefox and in about:config set stagefright.disabled to true.
3. Use MXplayer as your default Video handler

I found the above in this thread:

http://forum.xda-developers.com/android/help/android-mms-stagefright-exploit-t3166457/post62197171#post62197171

1278 posts

Uber Geek


  # 1363232 11-Aug-2015 21:57
Send private message

OnePlus One 6/6



BDFL - Memuneh
64208 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1363236 11-Aug-2015 22:04
One person supports this post
Send private message

1eStar: If you are rooted you can edit your build.prop file to disable the stage fright media player. Or you can buy an app that will do it for you.

https://play.google.com/store/apps/details?id=devnull.stagefrightpropchanger

Or [still rooted] you can uninstall your default mms handler from system and install 3rd party messaging app (textra chomp etc) that has been patched, to remove stagefright vulnerability.

The other suggested line of defence is to obfuscate your mms apn. I.E. disable mms. However it is noted that other apps can still access the stagefright media player, malicious coders could still potentially cause havoc.

My note2 is vulnerable, I'm rooted, but I feel I'm more likely to stuff up the build prop file than I am to get stage frightened. I hate mms anyway so I think I'll try disabling mms.


Somehow I think this would still leave about 900 million devices behind - not everyone uses root...






8105 posts

Uber Geek

Subscriber

  # 1363400 12-Aug-2015 08:40
Send private message

lNomNoml: OnePlus One 6/6


6 / 6 failed or passed??  smile




Regards,

Old3eyes


1476 posts

Uber Geek


  # 1363430 12-Aug-2015 09:30
Send private message

Existing topic here, beat you by about two weeks. Android has developed Stagefright

A
lmost everything cellular & Android is vulnerable at the moment.

More interesting: Has anyone seen an infected device, or know someones who has?

I've been disabling auto mms retrieval in devices around the company, but its not really a fix, if someone chooses to download the message then its still borked.

This is certainly damning for androids security update model (Almost no updates from some vendors - c'mon Huawei).

I'm still waiting on Lollipop for my Spark 4G Galaxy Tab S, let alone the Stagefright Fix.

348 posts

Ultimate Geek


  # 1363490 12-Aug-2015 10:20
Send private message

old3eyes:
lNomNoml: OnePlus One 6/6


6 / 6 failed or passed??  smile



LOL, and what version and OS are you running on your OnePlus? I'm on the last OTA of CyanogenOS 12 and I only pass 3/6...

mdf

2276 posts

Uber Geek

Trusted
Subscriber

  # 1363499 12-Aug-2015 10:35
Send private message

So I got the notification that a new update was available (Nexus 5, Lollipop 5.1.1). Tried to install it and got a fatal error message (the wee android guy lying on his back with his chest open and a red triangle exclamation mark thing). I have unlocked the bootloader and rooted, but that hasn't stopped OTA updates previously. Now when I check for updates it tells me I'm up to date, but using the Stagefright checker still shows the same vulnerabilities.

I found a couple of references to similar errors with the Nexus 6, but nothing about the 5 or how to fix. These other threads refer to being able to try and install multiple times though, which I can't seem to do.

Anyone else experienced anything similar? 

Does anyone know if you reflash manually you can just get the incremental updates, or does it have to be a fresh/clean install? I could do without setting everything up again.

1 | 2 | 3 | 4
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Industry plan could create a billion dollar interactive games sector
Posted 19-Aug-2019 20:41


Personal cyber insurance a New Zealand first
Posted 19-Aug-2019 20:26


University of Waikato launches space for esports
Posted 19-Aug-2019 20:20


D-Link ANZ expands mydlink ecosystem with new mydlink Mini Wi-Fi Smart Plug
Posted 19-Aug-2019 20:14


Kiwi workers still falling victim to old cyber tricks
Posted 12-Aug-2019 20:47


Lightning Lab GovTech launches 2019 programme
Posted 12-Aug-2019 20:41


Epson launches portable laser projector
Posted 12-Aug-2019 20:27


Huawei launches new distributed HarmonyOS
Posted 12-Aug-2019 20:20


Lenovo introduces single-socket servers for edge and data-intensive workloads
Posted 9-Aug-2019 21:26


The Document Foundation announces LibreOffice 6.3
Posted 9-Aug-2019 16:57


Symantec sell enterprise security assets for US$ 10.7 billion to Broadcom
Posted 9-Aug-2019 16:43


Artificial tongue can distinguish whisky and identify counterfeits
Posted 8-Aug-2019 20:20


Toyota and Preferred Networks to develop service robots
Posted 8-Aug-2019 20:11


Vodafone introduces new Vodafone TV device
Posted 7-Aug-2019 17:16


Intel announces next-generation Intel Xeon Scalable processors with up to 56 cores
Posted 7-Aug-2019 15:41



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.