Программы для ВконтактеVTS (Vulnerability Test Suite) for Android
- Размер: 0 Kb
- Статус (Цена) : Бесплатно
- Дата добавления: 24.11.2015
- Имя файла: details?id=com.nowsecure.android.vts
-
VTS (Vulnerability Test Suite) for Android helps to protect your Android device by showing you recent known vulnerabilities that a given device is susceptible to.
In implementing these checks VTS (Vulnerability Test Suite) for Android attempts to minimize or eliminate both false positives/false negatives without negatively affecting system stability.
When a vulnerability is discovered, Google receives word and applies a patch to Android. The Nexus devices are usually the devices that receive these patches quickest as they deviate the least (read: not all) from AOSP (Android Open Source Project - The core of Android, where Google commits to). The lag time between learning about a bug and the time when a patch is applied to a device can still be significant (for OEMs, it can be > 1 year or never). For example, the futex bug (CVE-2014-3153/Towelroot) was known about in late May, early June. This bug took multiple months to get patched on the flagship (at the time) Nexus 5. This leaves users extremely vulnerable to attack from applications. Users mostly do not know that their devices are vulnerable and this tool is meant to give visibility into the vulnerabilities a given device is susceptible to.
VTS (Vulnerability Test Suite) for Android current bug checks:
ZipBug9950697
Zip Bug 8219321 / Master keys
Zip Bug 9695860
Jar Bug 13678484 / Android FakeID
CVE 2013-6282 / put/get_user
CVE_2011_1149 / PSNueter / Ashmem Exploit
CVE_2014_3153 / Futex bug / Towelroot
CVE 2014-3847 / WeakSauce
StumpRoot
Stagefright bugs
x509 Serialization bug
PingPong root - CVE-2015-3636
Ссылка: https://play.go..apps/details?id=com.nowsecure.android.vts
In implementing these checks VTS (Vulnerability Test Suite) for Android attempts to minimize or eliminate both false positives/false negatives without negatively affecting system stability.
When a vulnerability is discovered, Google receives word and applies a patch to Android. The Nexus devices are usually the devices that receive these patches quickest as they deviate the least (read: not all) from AOSP (Android Open Source Project - The core of Android, where Google commits to). The lag time between learning about a bug and the time when a patch is applied to a device can still be significant (for OEMs, it can be > 1 year or never). For example, the futex bug (CVE-2014-3153/Towelroot) was known about in late May, early June. This bug took multiple months to get patched on the flagship (at the time) Nexus 5. This leaves users extremely vulnerable to attack from applications. Users mostly do not know that their devices are vulnerable and this tool is meant to give visibility into the vulnerabilities a given device is susceptible to.
VTS (Vulnerability Test Suite) for Android current bug checks:
ZipBug9950697
Zip Bug 8219321 / Master keys
Zip Bug 9695860
Jar Bug 13678484 / Android FakeID
CVE 2013-6282 / put/get_user
CVE_2011_1149 / PSNueter / Ashmem Exploit
CVE_2014_3153 / Futex bug / Towelroot
CVE 2014-3847 / WeakSauce
StumpRoot
Stagefright bugs
x509 Serialization bug
PingPong root - CVE-2015-3636
Ссылка: https://play.go..apps/details?id=com.nowsecure.android.vts
Идёт загрузка...Видео: