Amazing what happens when you hire smart people, eh?
24 posts • joined 12 Mar 2010
Latest battery bruiser Android from budget Moto G range appears ahead of MWC after an Amazon whoopsie
Revealed: NHS England bosses meet with tech and pharmaceutical giants to discuss price list of millions of Brits' medical data
Linus Torvalds pulls pin, tosses in grenade: x86 won, forget about Arm in server CPUs, says Linux kernel supremo
This post has been deleted by a moderator
Re: Windows has had multiple desktops for bloody years
Anonymous Bullard, some may be implemented as a ShowWindow hack, but the functionality has been around since at least NT4 to create proper desktops and this is the method that the SysInternals tool used. Documented at http://msdn.microsoft.com/en-us/library/windows/desktop/ms682573(v=vs.85).aspx
The anonymous replies seem to miss the point. Other platforms have had a spate of bugs which allow anyone to pick up a handset and bypass the lock screen, giving them somewhere between "full" and "pretty substantial" access to the device with no prior access or action required.
This flaw requires an attacker to persuade a user to install software and then, later, physically access the device and take advantage of the lock-screen bypass software they've installed. Doesn't seem in quite the same class to me?? As others have said, if you're in a position to be able to persuade the target to install software you could just persuade them to install software to access the data / feature you're interested in and forget about having to physically retrieve the handset later.
I'm not sure it counts as Raymond's airtight hatchway because it sounds like a local privilege escalation.