ProHoster > Blog > labaran intanet > Rashin lafiya a cikin Android- Firmware na Samsung, wanda aka sarrafa ta hanyar aika MMS

Rashin lafiya a cikin Android- Firmware na Samsung, wanda aka sarrafa ta hanyar aika MMS

A cikin abin da aka bayar Android- an gano wata matsala a cikin firmware ɗin Samsung a cikin na'urar sarrafa hoton Qmage, wanda aka gina a cikin tsarin nuna zane-zane na Skia, an gano ta a cikin matsala a cikin firmware ɗin Samsung a cikin na'urar sarrafa hoton Qmage. rauni (CVE-2020-8899), wanda ke ba ku damar tsara kisa na lamba lokacin sarrafa hotuna a cikin tsarin QM da QG (".qmg") a kowace aikace-aikace. Don kai hari, mai amfani baya buƙatar yin kowane aiki; a cikin mafi sauƙi, ya isa ya aika wanda aka azabtar da MMS, imel, ko saƙon taɗi mai ɗauke da hoto na musamman.

Ana kyautata zaton matsalar ta samo asali ne tun daga shekarar 2014, tun daga firmware da aka gina a kan Android 4.4.4, wanda ya haɗa da canje-canje don tallafawa ƙarin tsarin hoto kamar QM, QG, ASTC, da PIO (wani nau'in PNG). shafe в sabuntawa An fitar da firmware ɗin Samsung a ranar 6 ga Mayu. Babban dandamali Android kuma firmware daga wasu masana'antun ba su da wannan matsala.

An gano matsalar ne a lokacin gwajin fuzzing ta wani injiniyan Google, wanda kuma ya tabbatar da cewa raunin ba wai kawai ya takaita ga hatsari ba ne, amma ya shirya samfurin aiki na wani abu da ke ketare kariyar ASLR kuma ya ƙaddamar da kalkuleta ta hanyar aika jerin saƙonnin MMS zuwa wayar Samsung Galaxy Note 10+ da ke gudanar da dandamalin. Android 10.


Yi bidiyo

A cikin misalin da aka nuna, cin nasara ya buƙaci kusan mintuna 100 don kai hari da aika saƙonni sama da 120. Amfanin ya ƙunshi sassa biyu - a matakin farko, don keɓance ASLR, ana ƙayyade adireshin tushe a cikin ɗakunan karatu na libskia.so da libhwui.so, kuma a mataki na biyu, ana ba da damar shiga na'urar nesa ta hanyar ƙaddamar da "reverse". harsashi". Dangane da shimfidar žwažwalwar ajiya, ƙayyade adireshin tushe yana buƙatar aikawa daga saƙonni 75 zuwa 450.

Bugu da ƙari, ana iya lura da shi bazawa Bayanan faci na tsaro na iya zama Android, inda aka gyara raunin da ya shafi 39. An sanya matsaloli uku a matsayin matakin tsanani (ba a bayyana cikakkun bayanai ba tukuna):

  • CVE-2020-0096 lahani ne na gida wanda ke ba da damar aiwatar da lamba yayin sarrafa fayil ɗin da aka kera na musamman);
  • CVE-2020-0103 rashin lahani ne mai nisa a cikin tsarin da ke ba da damar aiwatar da lambar yayin sarrafa bayanan waje na musamman da aka kera);
  • CVE-2020-3641 rauni ne a cikin abubuwan mallakar Qualcomm).

source: budenet.ru

Sayi amintaccen masauki don shafuka tare da kariyar DDoS, sabar VPS VDS 🔥 Sayi ingantaccen masaukin yanar gizo tare da kariyar DDoS, sabar VPS VDS | ProHoster