HTC Peep Vulnerability Update
XDA Moderator Noonski let us know about an interesting article published today regarding HTC Peep vulnerability. Despite we have known about this since August 2010, there was no published fix for this problem. According to the original article, the default Twitter client in HTC devices, HTC Peep, is vulnerable to two different credentials disclosure vulnerabilities during the authentication process against the Twitter service (twitter.com). The first vulnerability resides in the third HTTP request, a POST request towards the “/oauth/authorize” resource, which contains several parameters, including the Twitter user name and password in the clear, making the authentication process vulnerable to eavesdropping attacks.
The latest information claims that there is a fix: HTC replies back informing “…that for the time being the update hasn’t yet been released on the website however, any customer who wishes to download it can contact us and we will send it out to them”.
Originally posted by Noonski
Maybe of interest
HTC Peep vulnerability.
Thanks to our friend and XDA member pof for the tip
Want something on the XDA Portal? Send us a tip!
The game industry has been around for decades, catering to a wide spectrum of people, young gamers and elder ones, casual gamers and serious ones, and for an industry with such specifications, innovation isn't the only fuel for success. An increasingly large number of games draw inspiration from another and build on top of that idea, and Tactile is one such product, an excellently executed brainchild of a mashup between Tetris and 2048. For 2048 veterans, the game will come across as relatively familiar....
This is a site of power users, and it is fair to say that most of us are more knowledgeable about Android than the average Joe. We tinker and tweak by customizing every corner for endless hours, until we arrive at a comfortable software configuration. In contrast, a large chunk of Android users don’t even use a different launcher - and many don’t know what a launcher is in the first place! When we get so involved in our...
The beautiful thing about Android is that there is so much to choose from. There are a handful of OEMs that design phones completely different from one another, so chances are you'll find something that suits your needs perfectly. Furthermore, Android itself is very open and customizable, giving users full control over their devices. With Google IO right around the corner, we'd like to know: Which manufacturer and device brought you over to Android?