Researcher of security firm Zimperium discovered the Stagefright vulnerability and mentioned that it is the worst Android flaw in the mobile OS history, and confirmed that they will reveal more details at the next BlackHat or DEFCON in Las Vegas this year.
Researcher Joshua Drake, vice president of platform research and exploitation at Zimperium zLabs, said exploits could be particularly insidious given the fact that an attacker need only use a malicious MMS message that could trigger the vulnerability without user interaction, and delete the message
As the vulnerability effects the devices running Android versions 2.2 to 5.1 of the Google OS, this means that vulnerability effects almost every Android users, almost 950 million Android users.
Joshua Drake from Zimperium discovered seven critical vulnerabilities in the native media playback engine called Stagefright, the expert defined the Stagefright flaw the “Mother of all Android Vulnerabilities.”
How it Exploit ?
Exploitation of the vulnerability is very much easy, as attackers only needs victims phone number,— Sounds amusing na ...!!! — but that true. To exploit the vulnerability attackers only need to send a single multimedia text message to unpatched Android device (Victims device).