Google says the Stagefright vulnerability has not harmed users' Android devices outside of the lab. But the libstagefright exploit, falls into the attention grabbing category of heap overflow exploits because for the last 20years OS developers and security analysts patched many different OSs to prevent memory corruption. Heap overflows are well understood and a very long game of cat and mouse between black hat and white hat hackers. Memory corruption is the first place that black hats look for an exploit condition and the first that white hats look to stop an exploit.
1 comment
[ 2.3 ms ] story [ 11.2 ms ] thread