Closed Bug 909345 Opened 12 years ago Closed 8 years ago

ZTE Open shipped with known vulnerabilities.

Categories

(Firefox OS Graveyard :: General, defect)

Product:
Firefox OS Graveyard
Component:
General
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: hub, Unassigned)

Details

According to this, the ZTE Open is shipped with know vulnerabilities. http://pof.eslack.org/2013/07/05/zte-open-firefoxos-phone-root-and-first-impressions/ The good news is that it is used to give back freedom on a locked phone. The bad news is that it can be used maliciously has it hasn't been addressed while it has been know for month (same disease as Android)
One of those vulnerabilities was addressed with bug 873860 (it doesn't appear to be the particular exploit used though)
(In reply to Dave Hylands [:dhylands] from comment #1) > One of those vulnerabilities was addressed with bug 873860 (it doesn't > appear to be the particular exploit used though) Actually, it was the exploit actually used. So the fix was available, but not taken.
See bug 910265 for the locked device issue.
Firefox OS is not being worked on
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.