Vulnerability: Remote USSD Attack

[darkavenger]

It appears that our device may be vulnerable to the Remote USSD Attack which has become better known for plaguing the Galaxy SIII. The attack may allow a remote wipe to be performed on our phones, you can read more here:

Remote USSD Attack - Prevention - dylan//posterous

Can somebody confirm this?

A simple work around is to install a second dialer so that if the attack is ever performed a 'complete action' menu will pop up, then allowing you to choose the secondary dialer that is not affected by the attack.

 

[me2151]

We ARE voulnerable... i used dylan reeves test and it sent me to my dialer with a code for my meid(his test displays that)

Tested on Cold as Ice a17

 

[hlxanthus]

Did it actually pull your meid? or just display a dialer code that didnt do anything? I no longer have a Optimus S to test this on, so I am curious.

 

[A-android-B]

Optimus v running Gingerdx rom is vulnerable. It actually pulls the entire meid. Scary

Sent from my LG-VM670 using Android Central Forums

 

[Sdude1200]

Whole MEID is shown

Sent from my LG-LS670 using Xparent Red Tapatalk 2

 

[Sdude1200]

Heres a new app to block it: https://forums.androidcentral.com/e...et.thauvin.erik.android.noussd&token=N9EkS3Oz

Sent from my LG-LS670 using Xparent Red Tapatalk 2

 

[thenameisnigel]

You are NOT vulnerable no matter the results. Its only on TouchWiz phones.

Sent from my SPH-D710 using Android Central Forums

 

[cole2kb]

It's not only TouchWiz phones. Some HTC models are affected as well.

HOWEVER...just because you have a dialer code that pulls up your MEID does not mean we have one that initiates any sort of factory reset. There is no proof that our phones are vulnerable to this kind of attack.

 

[Va1ha11a]

It's not only TouchWiz phones. Some HTC models are affected as well.

HOWEVER...just because you have a dialer code that pulls up your MEID does not mean we have one that initiates any sort of factory reset. There is no proof that our phones are vulnerable to this kind of attack.

All the same though, I'd rather not find out exactly how many of my devices are at risk.

 

[cole2kb]

Oh, of course, I'm not saying that this shouldn't be fixed, but I'm saying that until someone with an LG Optimus phone can perform a factory reset using a dialer code, nobody needs to freak out.

 

[CardcaptorRLH85]

Hmm...I was about to ask for an image of the malicious QR code so I could just go ahead and test it on my device after performing a Nandroid but, I've remembered that the factory reset command on a rooted Optimus S can cause bricking. Does anyone know if that command would do that on this device? If not, since I'm getting another phone in a week or so, I'll be perfectly willing to test (brick or no brick) at that point.

 

[klokateer123]

I think the brick is there only with a custom recovery. But still... better safe than sorry right.

Sent from my LG-LS670 using Android Central Forums

 

[drewwalton19216801]

This does NOT mean the Optimus S is vulnerable. It simply means there is a dialer code the brings up the MEID.

Try it on a link with a dialer code that resets data. Oh wait, the Optimus S doesn't have one....

Conclusion:
NOT VULNERABLE

 

[jivegirl14]

Re: Vulnerability: Remote USSD Attack -

Isn't this fixed already?
Samsung: Galaxy S3 already updated with USSD exploit fix, reviewing situation with other phones [updated] | Android Central

Also http://www.androidcentral.com/ussd-test

Did a test on mine and thankfully my S3 came up negative to being at risk. But it seems that Samsung has fixed or is fixing it.
Friend of mine lost all his contacts yesterday.

 

[garbb]

The codes are from Here: "Remote wipe vulnerability" on Android devices - Pastebin.com

*#06# in the dialer shows the meid on the optimus s.
*2767*3855# is the code that is supposed to factory reset the phone, I typed this into the dialer of my optimus s and nothing happened, so presumably the optimus s phones are not vulnerable, at least to this code. If there is no code that you can type in to reset the phone then they are not vulnerable at all.

 

[thenameisnigel]

The codes are from Here: "Remote wipe vulnerability" on Android devices - Pastebin.com

*#06# in the dialer shows the meid on the optimus one.
*2767*3855# is the code that is supposed to factory reset the phone, I typed this into the dialer of my optimus one and nothing happened, so presumably the optimus one phones are not vulnerable, at least to this code. If there is no code that you can type in to reset the phone then they are not vulnerable at all.

Why did I try it? Confirmed wipe on Sprint Epic 4G Touch. O_O -___-

 

[CardcaptorRLH85]

Why did I try it? Confirmed wipe on Sprint Epic 4G Touch. O_O -___-

I hope you backed up first....

 

[cole2kb]

Why did I try it? Confirmed wipe on Sprint Epic 4G Touch. O_O -___-

Lol, yeah, probably wasn't a good idea to check if it works on a listed affected device.

 

[On3wheels]

all of the articles here on androidcentral specifically state that it only happens on samsung phones running touchwiz, but as you stated, the htc one x is also reported as having problems. seems like we need to get the word out to htc and moto users as well.
How to tell if your Samsung phone is vulnerable to today's USSD hack | Android Central
"First off, note that today's glitch only affects Samsung phones. Our testing method may produce different results on other manufacturers' devices, but it's important to remember that it's impossible to use this exploit on a phone that's not running Samsung's TouchWiz software."

Security Bug Can Wipe Out Your Android Phone By Visiting a Web Page (Update 3)

"The remote USSD vulnerability I detailed in my last post (and now covered widely in the tech media) is not just a Samsung problem. The same general vulnerability (executing a USSD code without user intervention from a website, or other delivery vector) affects many phones. I've personally verified it on an HTC One X (running HTC Sense 4.0 on Android 4.0.3) and a Motorola Defy (running Cyanogen Mod 7 on Android 2.3.5)."

 

[gollum18]

Its really only a vulnerability on stock samsung phones most other phones if not all dont have the wipe code. Which samsung is removing with all of thier latest firmware releases.

Sent from my LG-LS840 using Android Central Forums