Bug In HTC Sense May Reveal WiFi Passwords, Fixes Are Underway
A security flaw in certain HTC Android builds allows third-party applications to access WiFi passwords. The flaw was discovered last September by Chris Hessing and Bret Jordan, who contacted HTC privately before publicly disclosing details.
Considering the list of affected devices – which includes the Desire HD, Glacier, Droid Incredible, Thunderbolt, Sensation, Desire S, EVO 3D and EVO 4G – it appears that the bug is related to some HTC-specific Android modifications in its custom Sense UI. The myTouch 3G and Nexus One, which both run stock Android software despite being manufactured by HTC, do not have this issue.
Since being informed of the security flaw, HTC has already incorporated fixes into regular OTA updates for “most” devices, though we do not know which ones. For those devices that haven’t gotten an automatic fix yet, HTC will provide a manual fix next week, as a statement on its support site reads:
HTC has developed a fix for a small WiFi issue affecting some HTC phones. Most phones have received this fix already through regular updates and upgrades. However, some phones will need to have the fix manually loaded. Please check back next week for more information about this fix and a manual download if you need to update your phone.
Read more details at My War With Entropy (via Techmeme).
Want something on the XDA Portal? Send us a tip!
By far the greatest assets we have at XDA-Developers are you, the developers, the eager to learn and the bold. Everyday we see innovation and brilliant ideas across the site, from this we know that many of you have great insight in to your respective fields. That is why today, I am honored to announce a new project that will allow us to work with you directly to have your views and thoughts expressed clearer than ever. Introducing: ...
Android Wear 5.1.1 OTA downloads are now available. That and much more news is covered by Jordan when he reviews all the important stories from this week. Included in this week's news is the announcement of Sony cutting the price of the Xperia Z1 and be sure to check out the article talking about the YotaPhone 2 Indiegogo pre-order. That's not all that's covered in today's video! Jordan talks about the other videos released this week on XDA TV. XDA...
We are almost at the end of Q2 for 2015, and we have seen most of the flagship phones for the year already. While flagship phones usually offer bleeding-edge specs and are the most sought after phones, there is a huge market for non-flagship phones. Some offer value, others offer unique differentiating features. Today, we are going to look at the X1 phone by a Chinese company named N0.1. The company promises a truly rugged IP68 Certified phone. The device has a Quad...