NEWS: NowSecure Announces API Security Testing
Contact Us Free Report

Deliver Secure Mobile Apps Faster

Stagefright Vulnerability – NowSecure Position

Stagefright Vulnerability – NowSecure Position

While an official proof of concept has not been released, NowSecure researchers have reviewed the available details and believe the Stagefright vulnerability is credible.

The attack is based on the Stagefright library, which includes handling decoding of audio and video files and associated metadata. Patches are available but working through distribution channels.

Until patches have been applied, Android device users can better protect themselves by disabling auto downloading of MMS, as this is the easiest approach an attacker would take to exploit the vulnerability en masse. Third-party SMS applications are unlikely to prevent the vulnerability unless they specifically disable loading of media. Simple avoidance of viewing untrusted media files may not be sufficient to mitigate risk as many applications, including browsers, can automatically trigger the vulnerability. Ultimately the only true mitigation is to be patched.

Get the latest news and updates!

Sign up for our All Things Mobile DevSecOps Newsletter

Sign me up!

About NowSecure Marketing

linkedin icon twitter icon

PRIVACY DISCLOSURE: NowSecure uses first party and third party cookies to provide functions of this website and our services, to uniquely identify visitors, to analyze use of our website, and to target our marketing. You can choose to block cookies using your browser settings. By continuing to use our website or services you indicate your agreement. To learn more about the cookies we use and how we may collect and use your personal data, visit our Privacy Policy

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close