Jump to content

Please read the Forum Rules before posting.

Photo

Android browser vulnerability

Started by Atheist Rob, Sep 17 2014 02:11 AM

  • Please log in to reply
2 replies to this topic

#1 Atheist Rob

Atheist Rob

    e-Sword Addict

  • Members (T)
  • PipPipPipPip
  • 83 posts
  • LocationThe Netherlands
Offline

Posted 17 September 2014 - 02:11 AM

I hope this post is not out of place, if it is a moderator is free to delete the post. Since MySword is an Android app, i thought this warning might be appropriate.

 

If you use a pre-KitKat version of Android (i.e Android version 4.3 or lower), do not use the stock browser, instead use a browser like Firefox or Chrome. The stock browser (aka AOSP browser) has a vulnerability that can be trivially exploited which allows a malevolent site to hijack other session that you have active at the same time. A good discussion of the subject can be read here: https://community.ra...r-cve-2014-6041 and the original CVE is here: http://www.cvedetail.../CVE-2014-6041/

 

Regards,

Rob

 

(edited typo)


Edited by Atheist Rob, 17 September 2014 - 02:12 AM.

#2 APsit190

APsit190

    e-Sword Tools Developer

  • Members (T)
  • PipPipPipPipPip
  • 2,869 posts
  • LocationLand of the Long White Cloud (AKA New Zealand)
Offline

Posted 17 September 2014 - 03:49 PM



I hope this post is not out of place, if it is a moderator is free to delete the post. Since MySword is an Android app, i thought this warning might be appropriate.

 

If you use a pre-KitKat version of Android (i.e Android version 4.3 or lower), do not use the stock browser, instead use a browser like Firefox or Chrome. The stock browser (aka AOSP browser) has a vulnerability that can be trivially exploited which allows a malevolent site to hijack other session that you have active at the same time. A good discussion of the subject can be read here: https://community.ra...r-cve-2014-6041 and the original CVE is here: http://www.cvedetail.../CVE-2014-6041/

 

Regards,

Rob

 

(edited typo)

 

Hi Rob,

First off, thanks for your post.

 

Secondly, its not the first time I've seen warning like this in one form or another relating to Android. The one thing that can be certain regarding warnings like this is that there is no system that is 100% bullet proof from attack and vulnerabilities. As a member of professional programmers, developers and etc type organizations is really helpful as I am constantly alerted to these kind of "attacks," and etc.

 

It was as a result of these kind of warnings and alerts, that after having purchased both my Samsung Galaxy S3 and my Samsung Galaxy 10.1 Note I downloaded Firefox web browser for them, and set them as the default browser on these devices.

 

So, with that, once again, thanks a heap for what you have posted.

 

Blessings,

Autograph.png

X (formerly Twitter)

 

#3 jayfusnorma

jayfusnorma

    New to Bible Support

  • Members
  • Pip
  • 1 posts
Offline

Posted 08 February 2015 - 04:20 AM

Opera for Android works good as it is avaliable easily from the play store. It works great on my tablet not so sure about the mini for phones.


Back to MySword


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users




Similar Topics


Frequently Asked Questions



Latest Blogs

  1. Bible Support
  2. MySword (Droid, Mobile)
  3. MySword
  4. Privacy Policy