|
Using Metasploit to hack Android
Some time ago at the Web appeard a new a module for the popular Metasploit framework: EZ - 2 Use. Using it and the bug in Android version 4.2 (i.e. the API older than 17) it is possible to steal a sensitive datas from telephone or tablet.EZ - 2 - Use allows to execute the JavaScript code in Android browser and in other vulnerable applications using WebView control. The payloads allows the hacker to obtaim remote access to: address book, SD card content, geolocation datas, smartphone's file system, built-in phone camera.The bug in API has been discovered 14 months ago and Google has released a patch. But... latest statistics show the percent of otholed devices running the Android is 70%! |
|