“Toast” Vulnerability in Android Allowed for New Overlay Attacks

11 September 2017

Tracked as CVE-2017-0752 and described as an elevation of privilege vulnerability in the Android framework (windowmanager), the bug abuses the “Toast” notifications in the operating system to modify what users see on the screen. Unlike similar overlay attacks, however, the new method does not require specific permissions or conditions to be effective, Palo Alto’s security researchers have discovered.

Read full news article on SecurityWeek

Date:

11 September 2017

Categorie(s):

NEWS

Tag(s):

Android, Attacks, Google, Mobile Development, New, Overlay, Security, Vulnerability

CISA Flags Critical Palo Alto Network Flaws Actively Exploited in the Wild15 November 2024
AI’s impact on the future of web application security15 November 2024
Using AI to drive cybersecurity risk scoring systems15 November 2024
Critical vulnerabilities persist in high-risk sectors15 November 2024
New infosec products of the week: November 15, 202415 November 2024