Samsung’s Exynos 4 quad-core mobile processor has a major flaw that can be exploited by hackers to take control of the device, according to a developer who has revealed this at the XDA Forum. According to the developer, this exploit can be manipulated to get the root level access and super user permission on the device. Basically, if a malware loaded app runs on the Exynos 4 device, then the hacker can gain complete control over the device.
As per the forum post, a kernel code injection, ram dump and other nefarious activities can be executed by installing an application from the Play Store or side-loading it. Once the code runs, the hacker gets root level access and super user rights over the device. After that, any app can gain root level access to be further exploit the different features of the device.
Thankfully, another developer named ChainFire has released an app that will patch this security hole but it will make one lose the warranty of the device. This app also roots the phone but makes it secure from the kernel level vulnerability.
Neither Google, nor Samsung released any written statement about acknowledging the loop hole or even investigating on to the issue.
The affected device list includes Samsung Galaxy S II, Galaxy SIII, Galaxy Note, Galaxy Note II, Galaxy Tab 7.7, Galaxy Note 10.1 and several other models that include Samsung Exynos 4 family of chipset.