Are you utilizing an Android gadget?
Beware! You ought to be extra cautious whereas taking part in a video in your smartphone—downloaded wherever from the Internet or acquired by e mail.
That’s as a result of, a specifically crafted innocuous-looking video file can compromise your Android smartphone—due to a important distant code execution vulnerability that impacts over 1 billion units operating Android OS between model 7.Zero and 9.0 (Nougat, Oreo, or Pie).
The important RCE vulnerability (CVE-2019-2107) in query resides within the Android media framework, which if exploited, might enable a distant attacker to execute arbitrary code on a focused gadget.
To achieve full management of the gadget, all an attacker must do is tricking the consumer into taking part in a specifically crafted video file with Android’s native video participant software.
Though Google already launched a patch earlier this month to handle this vulnerability, apparently thousands and thousands of Android units are nonetheless ready for the newest Android safety replace that must be delivered by their respective gadget producers.
“The most extreme vulnerability on this part [media framework] might allow a distant attacker utilizing a specifically crafted…