AirDroid has fixed a severe authentication software flaw in its Web interface that could give a hacker complete control over a mobile phone. Security Analyst Matt Bryant comments on his discovery in this PC World article: AirDroid Fixes Flaw That Could Grant Hackers Full Control of Your Phone
News & Events
Researchers from Bishop Fox have discovered a flaw in the popular Android app AirDroid that allows a remote attacker to secretly take control of a victim’s smartphone. Security Analyst Matt Bryant comments on his discovery in this Security Week article: Popular AirDroid App Vulnerable to Authentication Flaw: Researchers
Bishop Fox researchers announced today that they have identified a serious vulnerability in Android’s AirDroid application that allows potential attackers to gain access to the user’s Android phone. You can view all the details in this Bishop Fox Security Research …
AirDroid Version 3.0.4 and earlier versions’ web applications use JSON with padding (JSONP) for performing cross-origin requests. Due to JSONP being an insecure method of sharing data across origins, it is possible to hijack all of the AirDroid application functionality. By doing this, other users’ Android devices can be hijacked.