HTC working fix for exploit that exposes Wi-Fi passwords

HTC is working on developing a fix for an exploit that was discovered on some of their devices. Certain HTC devices running Android could expose Wi-Fi security credentials to third party application.

The exploit was discovered by Chris Hessing and Bret Jordan. Third party applications running on a range of HTC handsets with the android.permission.ACCESS_WIFI_STATE permission could call a command to access the Wi-Fi credentials of a connected network. The flaw was discovered back in September and was publically revealed today. Between September and today, security researchers C…

Continue Reading Here
HTC working fix for exploit that exposes Wi-Fi passwords
Jonathan Radande – droidmatters.com

Tags: connected network, party application, party applications, permission access, security credentials, security researchers

Category: Droidmatters