Stagefright: Vulnerabilities, Bug Fixing, Preventive Measures in Android

Print
IJCA Proceedings on Leveraging Information Technology for Inter-Sectoral Research
© 2019 by IJCA Journal
ICAIM 2017 - Number 2
Year of Publication: 2019
Authors:
Walunj Swapnil K.
Yadav Anil H.

Walunj Swapnil K. and Yadav Anil H.. Article: Stagefright: Vulnerabilities, Bug Fixing, Preventive Measures in Android. IJCA Proceedings on Leveraging Information Technology for Inter-Sectoral Research ICAIM 2017(2):15-19, February 2019. Full text available. BibTeX

@article{key:article,
	author = {Walunj Swapnil K. and Yadav Anil H.},
	title = {Article: Stagefright: Vulnerabilities, Bug Fixing, Preventive Measures in Android},
	journal = {IJCA Proceedings on Leveraging Information Technology for Inter-Sectoral Research},
	year = {2019},
	volume = {ICAIM 2017},
	number = {2},
	pages = {15-19},
	month = {February},
	note = {Full text available}
}

Abstract

This paper presents the threats to the Android by using the Loop Hole in the Operating System of Android. Stagefright is the group of software bugs that affect versions 2. 2 ("Froyo") and newer of the Android operating system, allowing an attacker to perform arbitrary operations on the victim's device through remote code execution and privilege escalation. Stagefright is believed to be the worst Android vulnerability yet discovered. All devices running Android versions Froyo 2. 2 to Lollipop 5. 1. 1 are affected, which are used by approximately 95% of all Android devices, by nearly 1 billion people. Hackers only need to know your phone number to infect your device.

References

  • https://en. wikipedia. org/wiki/Stagefright_(bug)
  • https://www. avast. com/faq. php?article=AVKB230
  • http://www. androidcentral. com/stagefright
  • https://www. exploit-db. com/docs/39527. pdf
  • "How to Protect from StageFright Vulnerability". zimperium. com.
  • Thomas Fox-Brewster (July 30, 2015). "Russian 'Zero Day' Hunter Has Android Stagefright Bugs Primed For One-Text Hacks". Forbes.
  • http://blog. trendmicro. com/trendlabs-security-intelligence/android-security-update-includes-fix-for-stagefright-vulnerabilities-discovered-by-trend-micro/
  • https://www. engadget. com/2016/03/19/reliable-stagefright-android-exploit/
  • https://blog. avast. com/2016/01/07/android-security-updates-roll-out-to-fight-stagefright-type-bug/
  • http://www. xda-developers. com/stagefright-explained-the-exploit-that-changed-android/