Android Stagefright bug exploit sample code published
Roughly a month after the frightful Stagefright Android vulnerability was disclosed, Zimperium's security researchers have published sample code for exploiting the bug. As a refresher, Stagefright is a critical vulnerability in Android that allows attackers to perform remote code execution, and it affected 95% of Android handsets at the time it was reported. For the nitty-gritty, you can watch this Black Hat conference video.
Since the disclosure, Google has published updated versions of its Hangouts and Messaging apps, plugging the worst of the attack vectors-a booby-trapped MMS could provide root access to an attacker, oftentimes with no indication to the user that something funky was happening. Zimperium notes that MMSs are only one of over ten attack vectors, though, ...