WhatsApp BO critical security vulnerability
XavierAP
n3minis-git at yahoo.es
Wed May 15 06:53:27 UTC 2019
https://www.wired.com/story/whatsapp-hack-phone-call-voip-buffer-overflow/amp
«a WhatsApp exploit that could inject malware onto targeted
phones—and steal data from them—simply by calling them. The
targets didn't need to pick up to be infected, and the calls
often left no trace on the phone's log. ...
«While WhatsApp bases its end-to-end encryption on the Signal
Protocol, its VoIP calling functionally likely also includes
other proprietary code as well. Signal says that its service is
not vulnerable to this calling attack.
«According to Facebook's security advisory, the WhatsApp
vulnerability stemmed from an extremely common type of bug known
as a buffer overflow.»
More information about the Digitalmars-d
mailing list