You can’t have a back door in the software because you can’t have a back door that’s only for the good guys.“ - Apple CEO Tim Cook
You should not give software to install the back door, because you can’t guarantee that this Backdoor only the good guys can use the–Apple CEO cook
0×0 developments
Recently Baidu WormHole vulnerability of the door went to the uproar,the impact of the National hundreds of millions of users,N app is affected,just install the Baidu related to the app,the phone is networked state,the phone will have a controlled risk,below we recall the events of the development:
1 0 On 1 4, Black clouds submitted to the Baidu map\keyboard remote vulnerabilities,and vendors have been confirmed,details are not disclosed
! [](/Article/UploadPic/2015-11/2 0 1 5 1 1 5 9 3 9 5 8 3 7 8. png? www. myhack58. com)
1 0 on 2 0 November,white hat steamed rice hair microblogging said they found a vulnerability,the impact of Android on a billion users,just installed a vulnerability app the phone connected to the network, there is the risk of attack,and there is video to verify its indeed the feasibility
! [](/Article/UploadPic/2015-11/2 0 1 5 1 1 5 9 3 9 5 8 6 4 0. png? www. myhack58. com)
1 1 On 1 Number,Trend Micro released analysis report,claiming that they have detected malicious samples(ANDROIDOS_WORMHOLE. HRXA)in the use Moplus SDK automatically and periodically download the user does not need the application when these applications are downloaded to the user device, if the user device has been rooted, then the app will be automatically installed while using the Baidu Moplus SDK the other vendor’s app will also be subject to vulnerability attacks of the risk;
1 1 on No. 2,the vulnerability is found also in the clouds reissue of the vulnerability analysis report,vulnerability details are not disclosed,at the same time Baidu a representative claiming their 1 0 month 3 0 previous vulnerability issues have all been solved;
! [](/Article/UploadPic/2015-11/2 0 1 5 1 1 5 9 3 9 5 8 5 5 3. png? www. myhack58. com)
1 1 on No. 2,at the same time we started Emergency the vulnerability of the event,after working overtime analysis,we constructed a poc,while we found that the Baidu each product bug fixes the situation is slightly different,some products may still not fix completely the vulnerability,or even simply not for any bug fixes action,such as the earliest exposure of Baidu input method;
The following is our recording of a presentation video,just installed the latest version of Baidu input method, through the browser access open 6 2 5 9 port,you can control the phone of some operations:
0×1 vulnerability analysis
! [](/Article/UploadPic/2015-11/2 0 1 5 1 1 5 9 4 0 0 4 5 9. png? www. myhack58. com)