A new exploit has been discovered due to a previously undetected hole in Samsung’s kernel for its latest breed of Exynos chipsets. The exploit if implemented can allow any malicious app to gain full access to a user’s device. For some odd reason, several parts of the memory(RAM) are open to read/write access to anyone, therefore using these permissions, malware can be pushed to the device.
The exploit is said to affect the Exynos 4210 and 4410 chipsets, which power the current gen Samsung Galaxy S II and the Samsung Galaxy S III , Galaxy Note as well as the recently launched Galaxy Note II. However, Samsung mobile owners in the US can relax as those feature Qualcomm chipsets due to the lack of LTE support on Exynos chipsets.
The exploit was brought to light by XDA member Alephzain, which allows any app to gain root access to the kernel without any permission or notice to the user of the device and therefore tamper with any part of the system.
Samsung has been notified of the issue, and the community members over at XDA-Developers have urged the owners of these devices not to download any new apps until an official fix is provided by Samsung.