A Major vulnerability has been found on devices using Exynos 4 SoC and Samsung Kernel sources. The vulnerability was discovered by XDA-Developers' forum member alephzain. The security flaw is actually in the kernel which makes the device R/W by all users, apps and gives access to full Physical Memory. In short, all Exynos 4 devices come pre-rooted directly from the manufacturers. We can give you one bad news and one good news about this discovery.
The bad news is that any application downloaded from the Google Play Store or installed manually can take FULL control of the device and cause permanent damage, even if the device is not rooted. XDA-Developers' Elite Recognized Developer Supercurio is already working on an app which can patch this security hole and prevent apps from taking over the device, he will release the app soon on Google Play Store.
The good news is that with this security flaw rooting an Exynos 4 device has just got a lot easier. XDA-Developers' Elite Recognized Developer Chainfire has already released an app called ExynosAbuse which can root a device with just a single click of a button. Now you don't have to flash unsecure or pre-rooted kernels through odin/heimdall on your Samsung device, all can be done via an app.
Exynos 4210 devices:
– Samsung Galaxy Note GT-N7000
– Samsung Galaxy S2 GT-I9100
– AT&T Samsung Galaxy S2 GT-I777
Exynos 4412 devices:
– Samsung Galaxy S3 GT-I9300
– LTE Samsung Galaxy S3 GT-I9305
– Samsung Galaxy Note 2 GT-N7100
– LTE Samsung Galaxy Note 2 GT-N7105
– Samsung Galaxy Note 10.1 GT-N8000
– Samsung Galaxy Note 10.1 GT-N8010
– Meizu MX
(Source: XDA-Developers)
