- Joined
- Apr 26, 2005
- Messages
- 3,137
- Reaction score
- 496
An interesting (and potentially devestating) remote attack against at least some Samsung Android phones (including the Galaxy S3) was disclosed recently.
In brief it works like this:
Phones support special dialing codes called USSDs that can display certain information or perform specific special features. Among these are common ones (*#06# to display IMEI number) and phone specific ones (including, on some phones, a factory reset code).
There is a URL scheme prefix called tel: which can, in theory, be used to hyperlink to phone numbers. The idea being that clicking on a tel: URL will initiate the phone's dialer to call that number.
In some phones the dialer will automatically process the incoming number. If it's a USSD code then it will be handled exactly as if it had be keyed in manually - requiring no user intervention to execute.
A tel: URL can be used by a hostile website as the SRC for an iframe (or potentially other resources like stylesheets or scripts I guess). It may then be loaded and acted upon with no user intervention at all.
You're correct. As long as the "use this by default" box isn't checked it'll always ask you which one before opening.Having skype means it constantly asks me what I want to use, that or the default browser.
So I guess that would mean if this happened, it would stop it and ask me what to do?
But yeah having a USSD to reset the phone is silly. Though maybe it has some reason to have it, like it's a part of Samsung Dive or something?
Having skype means it constantly asks me what I want to use, that or the default browser.
So I guess that would mean if this happened, it would stop it and ask me what to do?
But yeah having a USSD to reset the phone is silly. Though maybe it has some reason to have it, like it's a part of Samsung Dive or something?
You're correct. As long as the "use this by default" box isn't checked it'll always ask you which one before opening.
I don't know many people who use the stock android browser anyway. Most people either use dolphin or chrome. If this only works on the initial version that shipped with the gs3 and the stock browser then I don't see this as a problem.