• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
critical chipset bugs open millions of android devices to remote

Critical Chipset Bugs Open Millions of Android Devices to Remote Spying

You are here: Home / General Cyber Security News / Critical Chipset Bugs Open Millions of Android Devices to Remote Spying
April 21, 2022

Three security vulnerabilities have been disclosed in the audio decoders of Qualcomm and MediaTek chips that, if still left unresolved, could allow an adversary to remotely obtain entry to media and audio discussions from impacted cellular products.

According to Israeli cybersecurity firm Test Point, the issues could be made use of as a launchpad to have out remote code execution (RCE) attacks just by sending a specially crafted audio file.

“The impression of an RCE vulnerability can array from malware execution to an attacker gaining management more than a user’s multimedia knowledge, such as streaming from a compromised machine’s camera,” the researchers reported in a report shared with The Hacker News.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


“In addition, an unprivileged Android app could use these vulnerabilities to escalate its privileges and acquire obtain to media data and user discussions.”

CyberSecurity

The vulnerabilities are rooted in an audio coding structure originally created and open up-sourced by Apple in 2011. Referred to as the Apple Lossless Audio Codec (ALAC) or Apple Lossless, the audio codec format is employed for lossless knowledge compression of electronic tunes.

Due to the fact then, many 3rd-party distributors, together with Qualcomm and MediaTek, have integrated the Apple-supplied reference audio codec implementation as the basis for their have audio decoders.

And even though Apple has continually patched and remediated security flaws in its proprietary variation of ALAC, the open up-sourced variant of the codec has not acquired a one update due to the fact it was uploaded to GitHub 11 a long time ago on October 27, 2011.

The vulnerabilities found by Look at Place relate to this ported ALAC code, two of which have been determined in MediaTek processors and 1 in Qualcomm chipsets –

  • CVE-2021-0674 (CVSS rating: 5.5, MediaTek) – A circumstance of poor input validation in ALAC decoder main to details disclosure devoid of any consumer interaction
  • CVE-2021-0675 (CVSS score: 7.8, MediaTek) – A community privilege escalation flaw in ALAC decoder stemming from out-of-bounds produce
  • CVE-2021-30351 (CVSS rating: 9.8, Qualcomm) – An out-of-bound memory accessibility due to incorrect validation of variety of frames being handed all through tunes playback

CyberSecurity

In a proof-of-principle exploit devised by Look at Level, the vulnerabilities made it feasible to “steal the phone’s digital camera stream,” reported security researcher Slava Makkaveev, who is credited with finding the flaws alongside Netanel Ben Simon.

Following dependable disclosure, all the 3 vulnerabilities were being closed by the respective chipset makers in December 2021.

“The vulnerabilities were being very easily exploitable,” Makkaveev described. “A menace actor could have sent a music (media file) and when performed by a probable sufferer, it could have injected code in the privileged media service. The risk actor could have noticed what the cellular phone consumer sees on their phone.”

Located this posting attention-grabbing? Abide by THN on Fb, Twitter  and LinkedIn to browse a lot more exclusive content we write-up.


Some components of this post are sourced from:
thehackernews.com

Previous Post: «new incident report reveals how hive ransomware targets organizations New Incident Report Reveals How Hive Ransomware Targets Organizations
Next Post: Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails unpatched bug in rainloop webmail could give hackers access to»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors
  • WhatsApp Unveils Proxy Support to Tackle Internet Censorship
  • Hackers Using CAPTCHA Bypass Tactics in Freejacking Campaign on GitHub
  • Blind Eagle Hacking Group Targets South America With New Tools
  • US Family Planning Non-Profit MFHS Confirms Ransomware Attack
  • Microsoft Reveals Tactics Used by 4 Ransomware Families Targeting macOS
  • Dridex Malware Now Attacking macOS Systems with Novel Infection Method
  • Cyber attacks on UK organisations surged 77% in 2022, new research finds
  • WhatsApp to combat internet blackouts with proxy server support
  • The IT Pro Podcast: Going passwordless

Copyright © TheCyberSecurity.News, All Rights Reserved.