Though, MediaTek is trying to downplay the effects, it appears that sofware-related bug has resulted in a vulnerability in Android 4.4 KitKat powered Android phones. The vulnerability makes it possible for abusers to take advantage and could end up gaining root permissions to the device, bricking the device and even spying on users communications. MediaTek has confirmed the existence of the bug and assured that their security team is in the process of coming up with a fix.

Earlier this month, Justin Case a security researcher discovered and revealed the existence of the bug causing the vulnerability. MediaTek has also acknowledged the fact that there is a real chance for malignant exploits. The chipmaker based in Taiwan stated that the vulnerability arose from the failure of smartphone manufacturers to follow their request to have the debug function disabled prior the shipment of the handsets. However, the company did not disclose the exact manufacturers responsible, and due to this fact, it is still unknown which smartphone models affected by the bug.

Case basically sums up the bug and how the vulnerability could be taken advantage of, saying that the roperty space had been ‘nerved’ by MediaTek, making it possible for these properties to be altered by anyone, including even an app. He further added that a malicious app would not need an ADB authorization, all it could do is set properties such as the ‘ro.secure’ to 0, the ro.adb.secure prop to 0 and the ro.debuggable one to 1 and then over a Wi-Fi property, the ADB would be enabled and gain access to a local root shell.

QUICK NOTE: Free firmware downloads are made possible thanks in part to OVH Hosting & Dedicated Servers – Updato's #1 choice for hosting and storage solutions! Show your support and check 'em out.

The chipmaker has so far tried give little weight to the impact, even though a huge number of handsets are available on the market running on Android 4.4 KitKat which makes use of these chips. The company has avoided estimating the number of devices this bug may affect, however, they have disclosed that they are taking the necessary measures in ensuring that all the relevant manufacturers are notified about this issue.

Do you there exists a potential that this security vulnerability could affect your device? Are you satisfied by how MediaTek is tackling the issue? Share your thoughts in the comments section.

View Comments


unlock your phone

Easily and safely unlock your phone for any network provider in just minutes.

Get Started

LATEST FROM YOUTUBE:

What's my model number?

There are several ways to locate your model number:

Option 1
On your device, go to Settings, then "About device" and scroll down to "Model number"
Option 2
Often times you can view the model number inside the device, by removing the battery
Option 3
Using Samsung's model/serial number location tool

Looks like you're using an ad blocker.

We get it: ads aren't what you're here for...

But ad revenue is our only way to manage this site. Without ad revenue we won't be able to continue to provide quality content and free firmware downloads.

Please disable your ad blocker or whitelist Updato.com in order to continue into Updato's ad-light experience.

Thanks for your support!