Today, XDA-Developers’ forum member alephzain has discovered a major vulnerability which is to be found on many devices using Exynos 4 SoC and Samsung kernel sources.
It is reported that a way to obtain root on Galaxy S III without ODIN flashing has been found. The security hole is in the Kernel which makes the device R/W by all users and gives full access to physical memory.
The developers found a very simple exploit in Samsung Kernels, specifically Exynos 4 Processor (4210 and 4412). And the there is no control over it. Another XDA Developer “Chainfire” has already released an app called ExynosAbuse APK (Android Application Package file) which can root device with a simple one-click.
The Exynos 4210 and 4412 devices are listed below:
– Samsung Galaxy Note GT-N7000
– Samsung Galaxy S2 GT-I9100
– AT&T Samsung Galaxy S2 GT-I777
– Samsung Galaxy S3 GT-I9300
– LTE Samsung Galaxy S3 GT-I9305
– Samsung Galaxy Note 2 GT-N7100
– LTE Samsung Galaxy Note 2 GT-N7105
– Samsung Galaxy Note 10.1 GT-N8000
– Samsung Galaxy Note 10.1 GT-N8010
– Meizu MX
The above devices are all seems to be facing this vulnerability.