Samsung TouchWiz vulnerability will wipe some phones after just clicking a

By +Frank B.
in Back Page News

 Share

Recommended Posts

Grand Master

+Frank B. Subscriber²

Posted
  • Subscriber²
Posted

Samsung TouchWiz vulnerability will wipe some phones after just clicking a link

Samsung is finding itself in a spot of bother this morning, as a particular piece of HTML code has emerged that, when clicked, instantly resets the Galaxy S II ? and potentially other Android devices running the TouchWiz UI. Posted by Pau Oliva earlier today, the code was initially thought to affect the current flagship Galaxy S III model, however multiple negative reports and our own testing have shown that it only brings up the phone's dialer, failing to execute the full reset without user intervention. The latter is really the issue here: Samsung's software changes atop stock Android are allowing the GS II to automatically dial the hard reset code, taking away a critical aspect of user control.

The Galaxy S II is the only device we're certain is affected by the problem so far, though Tweakers.net reports successfully recreating it on the Galaxy S Advance as well. We're in touch with Samsung to get a better idea of the full scale and depth of this vulnerability.

Update: we have now managed to test this on an AT&T Samsung Galaxy S III and have confirmed it works on the device. Samsung tells us it's "looking into" the reports.

Source: The Verge

Grand Master

+Frank B. Subscriber²

Posted
  • Author
  • Subscriber²
Posted

did apple pay those people?

Heaven forbid there is an actual vulnerability in a Samsung product. No, let's blame the evil empire Apple.

Fail comment is fail, remixedcat.

The front page beat you to it, Meph. :p

Meh, I'm not overly concerned. So we just need to avoid TouchWiz, right?

... whoops, I swear I checked the front page and didn't see it. Mea culpa.

Grand Master

techbeck

Posted
Posted

Samsung Galaxy S III, designed for humans exploits.

Like there isnt exploits on all other systems as well. There will be a patched released for TW as soon as Samsung readys a patch for it. They were quick to release other patches/changes in TW before...so lets hope they are quick here as well.

The front page beat you to it, Meph. :p

Meh, I'm not overly concerned. So we just need to avoid TouchWiz, right?

Wish Samsung would wake up and just ditch TW.

Grand Master

tsupersonic

Posted
Posted

It's not just Samsung phones (with Touchwiz)...

Update: This issue is, unsurprisingly, a lot more nuanced than the video here lets on. The bug is based in the stock Android browser, is in fact quite old, and has been patched in more recent builds of Android - this is probably why Nexus devices running the most recent OTAs are unaffected. The fact is, this is not a Samsung problem, it's an old Android problem that has been known about for some time. More recent versions of Android avoid the wipe issue, but unpatched devices (like some Samsung phones) may still be vulnerable.

http://www.androidpolice.com/2012/09/25/new-exploit-could-force-factory-reset-on-many-samsung-phones-running-touchwiz/

Grand Master

techbeck

Posted
Posted

Did I say otherwise? No.

But yet you only mentioned Samsung.

We all know you dont like android and if all you are going to do is make comments like "Samsung Galaxy S III, designed for humans exploits." here and then again on TFP, then keep it to yourself.

Grand Master

.Neo

Posted
Posted

But yet you only mentioned Samsung.

That's because this thread involves Samsung only. Let me hold up a mirror for a second or two: Did you mention how most, if not all, major companies tend to spin things around if it suits their needs and thus can use it to their advantage? No, you did not. You purely talked about how Apple does it. I suggest you at least try to drop the display of double standards before calling others out. If not take a page from your own book and simply keep the remarks to yourself.

We all know you dont like android and if all you are going to do is make comments like "Samsung Galaxy S III, designed for humans exploits." here and then again on TFP, then keep it to yourself.

I have very little against Android in its vanilla state. In fact I recently bought my mom a Nexus 7 as a birthday present to take with her on holiday. Very nice device, especially for its price. Too bad huh?

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Why it's almost impossible to produce a smartphone in the United States

      By Asgardi · Posted

      Ridiculous claim that the labor cost difference of $6000 annually would increase cost per phone by $200. The employees produce 3 phones per month or what?
    • Sparkle 2.20.1

      By Copernic · Posted

      Sparkle 2.20.1 by Razvan Serea Sparkle is a free, open-source Windows optimization tool designed to make your PC faster, cleaner, and more private. With Sparkle, you can easily debloat Windows by removing unnecessary apps and services, disable Microsoft tracking to enhance privacy, and apply performance tweaks to boost speed. Its cleaner removes junk and temporary files, while every change is safe and fully reversible. Sparkle also features a modern, user-friendly interface with automatic updates, making system maintenance simple. Explore over 39 tweaks, from disabling telemetry and hibernation to optimizing network and game settings, all aimed at customizing and enhancing your Windows experience. Sparkle supports Windows 10 and 11. Sparkle 2.20.1 changelog: You can now change the Animation Direction from Up, Left, or Off. Added configurable animation direction (Up, Left, Off) for improved accessibility Added TTL caching to the system info backend Refactored tweak application flow to await NvidiaProfileInspector Improved IPC listener cleanup to correctly remove specific listeners Fixed online status not updating after successful network requests Updated system info tests to support backend caching Removed electron-toolkit utils dependency in favor of internal is.dev helper Fixed unwanted files and folders being included in application bundles Download: Sparkle 2.20.1 | Portable | ~100.0 MB (Open Source) Links: Sparkle Website | Github | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • The best controller for XBOX and PC is down to the lowest price

      By Figure 8 Dash · Posted

      Never used the G7 Pro, but I've never had a good experience with that style of d-pad and fighting games.
    • Sihoo Doro C300 Pro V2 Ergonomic Office Chair review: The Ikea of chairs

      By Figure 8 Dash · Posted

      And I just bought a seat cushion for my mesh chair. The chair feels nice but the first time I sat in it with boxers, I realized I don't like the feel of mesh on my legs. 😂
    • This Dell 27 inch 4K 120Hz IPS monitor is really cheap after a very long time

      By jordanspringer · Posted

      "This Dell 27 inch 4K 120Hz IPS monitor is really cheap after a very long time" ... Lol.

  • Recent Achievements

    • Dedicated
      Asgardi earned a badge
      Dedicated
    • Conversation Starter
      jessse3334 earned a badge
      Conversation Starter
    • Reacting Well
      JuvenileDelinquent earned a badge
      Reacting Well
    • One Month Later
      Excellence2025 earned a badge
      One Month Later
    • Week One Done
      Excellence2025 earned a badge
      Week One Done

  • Popular Contributors

    1. 1
      +primortal
      499
    2. 2
      +Edouard
      247
    3. 3
      PsYcHoKiLLa
      153
    4. 4
      Steven P.
      84
    5. 5
      macoman
      64
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!