‘Metaphor’ Stagefright Exploit Exposes Millions of Android Devices

76

The newly-discovered Stagefright variant can be used to break into Samsung, LG and HTC smartphones. 

Millions of Android devices are vulnerable to a new Stagefright exploit which can compromise a device in less than 20 seconds, researchers say. According to Israel-based NorthBit, the newly-disclosed Stagefright exploit, dubbed Metaphor, can be used in attacks against Nexus 5, LG G3, HTC One and Samsung Galaxy S5 mobile devices, which potentially leaves millions of devices open for exploit.

In a paper documenting their research (.PDF), the team said they created an exploit which impacts devices running on Android versions 2.2 and 4.0, while also bypassing ASLR on versions 5.0 and 5.1. 

Read more at ZDNet News