Google Nexus Smartphone Vulnerability Discovered
Several models of Google’s (NASDAQ:GOOG) Android-based Nexus smartphones have been discovered to have a vulnerability to denial-of-service attacks via SMS messages, reports Lucian Constantin at PCWorld. The vulnerability allows attackers to force certain models of Google’s Nexus smartphone to reboot or lose its mobile network connection.
The attack is made possible through a type of Flash SMS message that is immediately displayed on a smartphone’s screen and is not stored in the device’s memory. When a Flash SMS message is received, users have the option to either save or dismiss the message. However, if around 30 of these types of messages are received before the user can save or dismiss them, the Nexus phone will automatically reboot.
Additionally, if the device requires that a PIN be entered after rebooting, it will remain disconnected from the mobile network until a user notices their device has rebooted. The issue affects Google’s Galaxy Nexus, Nexus 4, and Nexus 5 models that run the Android 4.x firmware versions. The Galaxy Nexus is manufactured by Samsung (SSNLF.PK), while the Nexus 4 and Nexus 5 are made by LG.