The app allows the download of other game apps listed in an. reported to the app maker three months ago by researchers at Trend Micro. The researchers say that when the app downloads other apps from the download center, it checks an external directory that can be written to by any third-party app that has SDcard write permission. The flaws exist in an app called SHAREit, which allows Android app users to. What's more, SHAREit is also vulnerable to a miscreant-in-the-middle (MITM) attack. According to researchers, the app contains multiple unpatched vulnerabilities that hackers could abuse to run malicious code on devices where the app is installed and expose sensitive user data. The app has over one billion downloads on Google Play Store. While they note that Google Chrome implements a defense against silent app installation via deep link URL, they point out that a local app could still trigger a download and installation from an arbitrary URL. Trend Micro researchers have identified a bug in the Android file sharing app SHAREit. #TREND MICRO ANDROID SHAREIT 1B INSTALL#Duan and Chang say it's possible to install a malicious app and enable limited remote code execution. #TREND MICRO ANDROID SHAREIT 1B APK#Because this feature will install an Android APK with the file suffix. The app also implements a deep linking feature that allows it to download files from any http/https URL that includes *. or domain. A renowned cybersecurity firm Trend Micro revealed this while they were meticulously analyzing the android version of ShareIt.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |