How do you know this?
I scanned my phone with ‘’QuadRooter’’ app and it found 4 vulnerable items. These are CVE-2016-2059, CVE-2016-2504, CVE-2016-2503 and CVE-2016-5340. How can i fix this problem?
And i attached an info about this problem,
Android has Fallen! Yet another set of Android security vulnerabilities has been discovered in Qualcomm chipsets that affect more than 900 Million Android smartphones and tablets worldwide.
What's even worse: Most of those affected Android devices will probably never be patched.
Dubbed "Quadrooter," the set of four vulnerabilities discovered in devices running Android Marshmallow and earlier that ship with Qualcomm chip could allow an attacker to gain root-level access to any Qualcomm device.
The chip, according to the latest statistics, is found in more than 900 Million Android tablets and smartphones.
That's a very big number.
The vulnerabilities have been disclosed by a team of Check Point researchers at the DEF CON 24 security conference in Las Vegas.
Critical Quadrooter Vulnerabilities:
The four security vulnerabilities are:
CVE-2016-2503 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2503> discovered in Qualcomm's GPU driver and fixed in Google's Android Security Bulletin for July 2016.
CVE-2016-2504 <http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2016-2504> found in Qualcomm GPU driver and fixed in Google's Android Security Bulletin for August 2016.
CVE-2016-2059 <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2059> found in Qualcomm kernel module and fixed in April, though patch status is unknown.
CVE-2016-5340 <http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2016-5340> presented in Qualcomm GPU driver and fixed, but patch status unknown.
Qualcomm is the world's leading designer of LTE (Long Term Evolution) chipsets with a 65% share of the LTE modem baseband market. If any one of the four flaws is exploited, an attacker can trigger privilege escalations for gaining root access to an affected device.
All an attacker needs is to write a piece of malware and send it to the victim. When installed, the malware offers the attacker privilege escalation on the affected devices.
According to the researchers, the attack can also be conducted through a malicious app. An attacker needs to trick a user into installing a malicious app that, unlike other malware, would execute without requiring any special permission checks.
"Such an app would require no special permissions to take advantage of these vulnerabilities, alleviating any suspicion users may have when installing," Check Point researchers write in a blog post <http://blog.checkpoint.com/2016/08/07/quadrooter/>.
If any of the four vulnerabilities are successfully exploited, an attacker could gain root access to an affected device, giving the attacker full access to the device, including its data, camera and microphone.
List of Affected Devices (Popular)
More than 900 Million Android devices that ship with chip are vulnerable to the flaws.
Here's the list of some of the popular affected devices, though there are far more devices that are impacted by one or more Quadrooter vulnerabilities.
Samsung Galaxy S7 and Samsung S7 Edge
Sony Xperia Z Ultra
OnePlus One, OnePlus 2 and OnePlus 3
Google Nexus 5X, Nexus 6 and Nexus 6P
Blackphone 1 and Blackphone 2
HTC One, HTC M9 and HTC 10
LG G4, LG G5, and LG V10
New Moto X by Motorola
T-Mobile Support Community <https://support.t-mobile.com/?utm_source=supportcommunity&utm_medium=email&utm_campaign=emailnotices>
My LG4 operating system is vulnerable
created by snn_555 <https://support.t-mobile.com/people/snn_555> in LG G4 - View the full discussion <https://support.t-mobile.com/message/565937#565937>
How do you know this?
Reply to this message by replying to this email -or- go to the message on T-Mobile Support <https://support.t-mobile.com/message/565937#565937>
Start a new discussion in LG G4 by email <mailto:discussions-community-phones
email@example.com> or at T-Mobile Support <https://support.t-mobile.com/choose-container.jspa?contentType=1&containerType=14&container=2524>
Not interested in these emails anymore, or want to change how often they come? Update your email preferences <http://support.t-mobile.com/user-notification-preferences!input.jspa>.