Is your phone safe with a malicious tel url?

[3vodroid]

So I know you all probably heard about the "hack" going around that apparently can remotely factory reset your device, among other harmful things. Many devices are vulnerable to this. Including many Samsung, Motorola and yes, htc phones.( the sgs3 has been patched)

The good thing is I believe our evo lte's are safe(the one x not so much)

Use this Page to test and see if you get the same result as me. You all should be safe. If your phone displays the imei in the dialer then your vulnerable. If it displays *#06# your safe. This won't clear anything so don't worry. It just let's you know if your vulnerable or not. But I'm assuming if one evo is safe they all should be. So this is a test

USSD EXPLOIT TESTER

USSD Exploit Test

 

[marctronixx]

Moved to general so more eyes can be informed. great post.

 

[eyebeam]

Thanks for posting this, 3vodroid.

In case anyone else is interested - just tested this on my un-rooted Evo 3D - and it seems it's among the safe. *#06#

 

[breadnatty08]

Rooted Galaxy Nexus - all safe.

 

[sntaylor]

Cm10 S2 Is Safe, Fiancees Galaxy W Unrooted Isn't :-(

 

[zuben el genub]

Is it or isn't it?
Picked up these 2 links on another forum.
Checked on CM - no mention

So which is it and what are they patching?

 

[EarlyMon]

http://dylanreeve.posterous.com/remote-ussd-attack

Pretty well explains it. Check out TelStop if it's a problem.

Test is the link in the op.

 

[Granite1]

This is moving around fast. I saw another thread somewhere in the forums with this earlier.

I tested my LTEvo, came up negative on the test.

 

[!on]

Install Telstop from play store

moto_defy (swype)

 

[n0ve]

Galaxy s3 patch released this morning to fix. Not sure about others.

 

[n0ve]

Technically...if you have changed your MSL...wouldn't that alone prevent any vulnerability?

 

[chris4x4]

RAZR MAXX....fialed test

 

[zuben el genub]

Rooted Nexus S - CM9 No good. So CM9 is vulnerable. So is 7

 

[zuben el genub]

So will CM notify us of an update?
They are finally admitting that some CM phones do have a problem.

 

[EarlyMon]

Technically...if you have changed your MSL...wouldn't that alone prevent any vulnerability?

Good question.

So will CM notify us of an update?
They are finally admitting that some CM phones do have a problem.

Don't know. But the TelStop app looks like a good stop gap in the meantime.

 

[breadnatty08]

Rooted Nexus S - CM9 No good. So CM9 is vulnerable. So is 7

That's not good. Are you on an official release? I'd get in touch with the devs to see if they can do anything.

 

[zuben el genub]

I grabbed Telstop. I am using the final official 9 by Crespo.
I headed for the CM forum 1st thing this AM. Like I said - the mods or the "official" posters were saying that CM didn't have the problem.

Checked again later, and there were quite a few more posters saying that they were seeing the IMEI.

I posted those 2 links that were supposed to be some kind of patches, but not being familiar with the terms, I couldn't tell what those entries were supposed to be.

http://review.cyanogenmod.com/#/c/23952/
http://review.cyanogenmod.com/#/c/23978/
_________________

 

[!on]

Defy fails it. Not surprising as there are no more updates for it.

 

[NightHawk877]

My Captivate and Galaxy S 3 are safe. Phew.

 

[oopsibrokeit]

The samsung galaxy prevail failed the test

 

[n0ve]

Whether or not this is a major threat, maybe we shouldn't publicly list which device fails or not?


http://www.digitaltrends.com/android/how-to-protect-yourself-from-androids-dirty-ussd-vulnerability/

 

[n0ve]

Good question.




I know with my handset, even if your able to get the imei, upon attempting to wipe/reset, your MSL = needed, and since it's changed, any of those calculation/conversion methods won't produce the correct MSL.

 

[Satires]

No operating system is safe. If it's connected, it vulnerable ....

 

[EarlyMon]

No operating system is safe. If it's connected, it vulnerable ....

Changing the title. Thread started in a phone forum where the vulnerability wasn't present.

 

[n0ve]

No operating system is safe. If it's connected, it vulnerable ....

Studying for "Ethical Hacking" Cert+. To add to A+/Net+. Cannot agree with you more. BUT, there are exploits, and then there are vulnerabilities. Regardless, unless you run airplane mode 24/7 yes your vulnerable. But if a simple exploit is able to be blocked, would...go back to "Normal always vulnerable mode" lol.

Funny that whenever I have a remote PC job, and a paranoid customer, "Well, now that your connected to my PC, can you like ,steal all my files, information?" My response is, Even if you have not installed a remote connection software, your system is vulnerable in one way or another.

Hackers who get caught/locked up, sometimes get bailed out w/ a job offer. (In no way am i endorcing any type of illegal activity, just expressing my thoughts on network security)