Nick from the Android Security team here.
In the future, please feel free to send these kinds of reports to
secur...@android.com. Please see
http://developer.android.com/guide/faq/security.html#issue for contact
information.
Android's Compatibility Test Suite (CTS) is an executable software
Re: [FD] Cyanogenmod MITM: proven, despite cyanogenmod's public denail
Its not clear to me where its been proven. I think your post is
missing some information, like the smoking gun. (It may exist, you
just didn't make it clear).
If I understand correctly, the original reporter may have been
Compliance Test Suite is one portion of the process OEMs use to certify
Android builds on shipping devices. I cannot think of any instance where
the average user would run the suite (which takes several hours to do and
is a fairly complicated process