Hey Tauren, It would be a attack from the computer to the phone in some sort of file transfer.
I guess what I am trying to say is what if a user connects the device into the computer and has files on the computer that he wants to transfer to the device via a USB Mass Storage? I believe from the dev docs that it said external files can disappear if the user puts the external storage on the computer. I hope I am not confusing anyone or asking a dumb question. I am just curious. :D On Aug 27, 9:40 am, Tauren <[email protected]> wrote: > Is this an attach on the phone itself via the sdcard? or an attack on > the computer? For an attack on the computer to occur the software > often needs to be run, which from the sdcard shouldn't happen. As > for attacking the phone I'll leave that up to the experts but I > suspect that the phone won't just run stuff. If its a vulnerable > document of some sort like say a PDF then it comes down to the user > and knowing not to open things he shouldn't. > > On Aug 27, 9:21 am, Eric Dorman <[email protected]> wrote: > > > > > Hey guys, > > > I have recently been reading up on the External Storage Documentation > > and I have a question that I wanted to address before I made any > > assumptions. :D > > > If you can write files to lets say the SD Card then if the user > > connects his/her device into a computer then couldn't the External > > Storage be vulnerable to some kind of security attack on the files in > > the External Storage System that have been saved? > > > I am not sure if this would count as a vulnerability,but I thought I'd > > ask before I go and report it. :( -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
