hTc製スマートフォンにWifi認証情報をサードパーティー製アプリが取得できる脆弱性
1 :番組の途中ですがアフィサイトへの転載は禁止です:
HTC has acknowledged what it calls a “small” issue on certain Android-powered devices, which may expose
the passwords to Wi-Fi networks you have connected to. Security researchers Chris Hessing and Bret Jordan
first discovered the flaw, which allows third-party applications to see your Wi-Fi credentials in full.
Applications with access to the “android.permission.ACCESS_WIFI_STATE” permission, according to
The Next Web, are able to use a certain command (.toString()) in the “WifiConfiguration” class to access all of
the information for a wireless network you are connected to ― including the password required for access.
If combined with the android.permission.INTERNET permission, attackers could then harvest the details and send
them to a remote server on the Internet.
The flaw affects a large number of HTC devices, including:
Desire HD (both “ace” and “spade” board revisions) – Versions FRG83D, GRI40
Glacier – Version FRG83
Droid Incredible - Version FRF91
Thunderbolt 4G – Version FRG83D
Sensation Z710e – Version GRI40
Sensation 4G - Version GRI40
Desire S - Version GRI40
EVO 3D - Version GRI40
EVO 4G - Version GRI40
http://www.technobuffalo.com/companies/htc/htc-issues-fix-for-small-issue-that-leaks-your-wi-fi-passwords/
|
|
|
2 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/02(木) 23:34:25.79 ID:k25T+S490
>>1 続き
It appears that HTC’s MyTouch 3G and Nexus One devices are not affected.
If you device is vulnerable, you’ll be pleased to know that the Taiwanese company has already developed a fix,
which it announced in a small bulletin on its support site on January 31. Many of you won’t need to do anything
to update your device ― it will have already been done ― but others will have to update manually when the download is available… next week:
HTC has developed a fix for a small WiFi issue affecting some HTC phones. Most phones have received this fix
already through regular updates and upgrades. However, some phones will need to have the fix manually loaded.
Please check back next week for more information about this fix and a manual download if you need to update your phone.
Even without this fix, however, your device should be safe as long as you do not download apps from the Android
Market that are specifically designed to harvest these details. So, simply put, don’t download anything that you do not trust for the time being.
It’s a shame HTC’s devices have been subjected to another security flaw, but it’s great to see it has already provided a fix.
Is your HTC handset affected by this issue?
It appears that HTC’s MyTouch 3G and Nexus One devices are not affected.
If you device is vulnerable, you’ll be pleased to know that the Taiwanese company has already developed a fix,
which it announced in a small bulletin on its support site on January 31. Many of you won’t need to do anything
to update your device ― it will have already been done ― but others will have to update manually when the download is available… next week:
HTC has developed a fix for a small WiFi issue affecting some HTC phones. Most phones have received this fix
already through regular updates and upgrades. However, some phones will need to have the fix manually loaded.
Please check back next week for more information about this fix and a manual download if you need to update your phone.
Even without this fix, however, your device should be safe as long as you do not download apps from the Android
Market that are specifically designed to harvest these details. So, simply put, don’t download anything that you do not trust for the time being.
It’s a shame HTC’s devices have been subjected to another security flaw, but it’s great to see it has already provided a fix.
Is your HTC handset affected by this issue?
3 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/02(木) 23:35:15.76 ID:tXqdqAGX0
なるほど
4 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/02(木) 23:36:54.77 ID:D4eVLYlR0
そういうのもあるのか
5 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/02(木) 23:38:07.92 ID:GP8EHP1P0
あーわかるわかる
6 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/02(木) 23:58:32.21 ID:l09OPHpM0
EVO3Dの俺は高みの見物
ってマジかよ…
ってマジかよ…
7 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 00:29:44.88 ID:HJQVCNHN0
IS04の俺大勝利ってことか
8 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 01:10:28.05 ID:g9nyVrH10
日立がオシャレな表記に目覚めたのかなと思ってた
9 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 01:16:57.37 ID:W2bjMcD50
無印Desireは影響ないのか
10 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 01:25:23.79 ID:DWz3R9zs0
HTCはオワコン。
つーか海外製はオワコン
本気で頑張っても限界が見えてきた。
これからは今までガラケーでくすぶってた日本製が圧倒的技術力で巻き返す。
つーか海外製はオワコン
本気で頑張っても限界が見えてきた。
これからは今までガラケーでくすぶってた日本製が圧倒的技術力で巻き返す。
11 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 01:33:48.34 ID:bAAXFgbs0
0円、CB7万につられてEVO3Dを貰っちまった
メインのL04Cより遥かに使いづらいから3日で起動しなくなった
メインのL04Cより遥かに使いづらいから3日で起動しなくなった
12 : 忍法帖【Lv=40,xxxPT】 :2012/02/03(金) 03:49:14.89 ID:kKSqMzxP0
俺の無印EVOはどうなんだ?
13 : 忍法帖【Lv=40,xxxPT】 :2012/02/03(金) 05:49:33.39 ID:vX6CccKp0
俺のDHDはどうなのかと思ったら余裕でauto
14 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 05:50:36.67 ID:YNLZ7+nl0
15 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 05:50:41.29 ID:rFBPsisf0
16 :番組の途中ですがアフィサイトへの転載は禁止です:2012/02/03(金) 05:55:03.33 ID:ptF4Cefa0
ガラスマ以前にandroidはなぁ
スマホはiOS一択だわ 予備で考えてwindows mobile
スマホはiOS一択だわ 予備で考えてwindows mobile