Yuni 13, 2017

Duk na'urorin OnePlus sunada rauni ga OS Rage Hare-Hare Saboda 4 Raunin da bai Taka ba

Na'urorin OnePlus tare da sabuwar sigar software da ake samu suna da saukin kai hare-hare wadanda zasu iya rage girman tsarin aikin wayar da kuma nuna na'urar ga kurakuran tsaro da suka gabata.

Mai bincike kan tsaro, Royi Hay na Aleph Research, HCL Technologies, sun gano raunin abubuwa huɗu marasa mahimmanci waɗanda suka shafi duk wayoyin salula na OnePlus (Oneaya / X / 2/3 / 3T), suna gudanar da sababbin sigogin OxygenOS 4.1.3 da ƙasa, da kuma HydrogenOS 3.0 da ƙasa. OxygenOS da HydrogenOS sigar al'ada ce ta Android OS da ke gudana akan wayoyin OnePlus.

Duk Kayan na'urorin OnePlus na ularfafawa ga Dowaddamar da Haɓaka ta OS Saboda wsananan Laifi (4)

A cewar Hay, raunin ya ba wa maharin Man-in-the-Middle (MitM) damar katse buƙatar sabuntawar OTA kuma ya maye gurbinsa da tsohuwar tsohuwar software, yana ba da damar yin amfani da abubuwan da aka lalata yanzu. Wannan ba zai sa wayar ta sake saita masana'anta ba, kuma yana iya buɗe wayarka har zuwa mawuyacin yanayin tunda za ka kasance a kan tsofaffin software.

Hay ya gano raunin kuma ya ba da rahoton matsalolin ga OnePlus a watan Janairun wannan shekara, amma kamfanin ya kasa magance ɗaya daga cikin matsalolin.

Lokacin da OnePlus ya kasa yin facin waɗannan batutuwan tsaro bayan kwanaki 90 na bayyanawa da alhakin su, da kuma wasu kwanaki 14 na ƙarin ƙaddara, mai binciken ya yanke shawarar buga cikakkun bayanai game da yanayin rashin lafiyar a fili, waɗanda aka bayyana a ƙasa.

Bayanin Canjin yanayi:

1. CVE-2016-10370: Sabuntawa na OnePlus OTA Akan HTTP

OnePlus yana tura sa hannun-OTA akan HTTP, saboda haka yana ba da damar MiTM kai tsaye.

Hay da Sagi Kedmi, waɗanda suma suka gano hakan da kansu, sunyi ikirarin cewa OnePlus yana gabatar da sabunta-OTA akan HTTP ba tare da TLS ba, yana bawa maharan nesa damar aiwatar da harin MitM. Wannan yana nufin, mai kawo hari zai iya ƙaddamar da hari kuma ya sace tsarin sabuntawa na wayar OTA na wayar OnePlus, wanda yake da saukin kai hare-hare na mutum-na-tsakiya (MitM) saboda ana sarrafa shi ta hanyar HTTP maimakon HTTPS.

Tunda an sanya hannu kan sabuntawar OTA tare da sa hannu na dijital, wannan kwaro shi kaɗai bai isa ba don tura muguwar sabunta abubuwa ga na'urorin da abin ya shafa. Amma wannan raunin yana sauƙaƙa wasu raunin uku da aka ruwaito a ƙasa, wanda zai iya ba maharin damar kayar da tsarin sa hannu na dijital shima.

2. CVE-2017-5948: Haƙƙin Ragewar OnePlus OTA

Yana bawa maharin nesa damar rage tsarin aiki na na'urar OnePlus da aka yi niyya, ko dai yana aiki akan OxygenOS ko HydrogenOS, zuwa sigar da ta gabata wacce zata iya ƙunsar raunin da aka bayyana a baya.

Tunda duk OnePlus OTAs na ROM da samfuran daban an sanya hannu ta maɓallin dijital ɗaya, na'urar zata karɓa ta girka kowane hoto na OTA, koda kuwa an shigar da bootloader ɗin.

Na'urorin Android galibi suna da lambar ma'ana wacce ba ta ba masu amfani damar rage darajar OS ɗin su ba, amma OnePlus ya faɗi a nan ma. Ba ya bincika idan sigar OS ɗin da aka girka yanzu tana ƙasa da ko daidai da hoton OTA da aka bayar.

OnePlus /aya / X / 2/3 / 3T wannan matsalar ta shafa.

Bidiyon da ke ƙasa ya nuna Hay yana aiwatar da harin rage girman OS.

3. CVE-2017-8850: OxygenOS / HydrogenOS Crossover Attack

Maharan za su iya girka HydrogenOS akan OxygenOS kuma akasin haka, a kan na'urar OnePlus da aka yi niyya, ko da a kan masu ɗora kaya.

Wannan yana nufin mai kawo hari zai iya shigar da OxygenOS akan na'urorin da aka tsara don tallafawa HydrogenOS, ƙaddarar OxygenOS (A wasu lokuta, girka OS mafi girma akan tsofaffin kayan aiki zai haifar da haɗari ko hana sabis na dindindin). Wannan harin zai yiwu saboda gaskiyar (cewa) duka ROMs suna amfani da maɓallan tabbatarwa na OTA iri ɗaya.

OnePlus /aya / X / 2/3 / 3T wannan matsalar ta shafa.

4. CVE-2017-8851: OnePlus OTA /aya / X rosetare Attack

Maharan za su iya shigar da OTA na samfurin ɗaya a kan ɗayan, koda a kan masu ɗora kaya.

Wannan lahani, wanda kawai yake shafar OnePlus X da OnePlus One, kusan iri ɗaya ne da waɗanda muka ambata ɗazu, amma a wannan yanayin, mai kai harin MiTM na iya maye gurbin OS (Oxygen / Hydrogen) wanda aka tsara don OnePlus X tare da OS (Oxygen / Hydrogen) ) wanda aka tsara don OnePlus One, har ma a kan ɗakunan bootloaders. Wannan saboda duka na'urorin "suna amfani da maɓallan tabbatarwa na OTA iri ɗaya" kuma "suna raba dukiyar tsarin ro.build.product ɗin."

Duk kuskuren da ke sama sun wanzu ne kawai saboda OnePlus baya amfani da amintaccen sadarwa don isar da sabuntawar OTA, kuma ana iya yin sajersa cikin sauki kawai ta hanyar gabatar da aiwatar da HTTPS / TLS.

Tunda amfani yana buƙatar maharan da na'urar da aka yi niyya su kasance a kan hanyar sadarwa ɗaya, ana ba masu amfani shawarar cewa su haɗa kai da hanyar sadarwar Wi-Fi.

Kuna iya bincika amfani da hujja-na-ra'ayi don raunin abubuwan da ke sama nan.

Game da marubucin 

Chaitanya


{"email": "Adireshin imel ba daidai ba ne", "url": "Adireshin gidan yanar gizo ba shi da inganci", "required": "Filin da ake buƙata ya ɓace"}