» 新闻来源 XDARecently discover a way to obtain root on S3 without ODIN flashing.The security hole is in kernel, exactly with the device /dev/exynos-mem.This device is R/W by all users and give access to all physical memory ... what's wrong with Samsung ?Its like /dev/mem but for all.Three libraries seems to use /dev/exynos-mem:/system/lib/hw/camera.smdk4x12.so/system/lib/hw/gralloc.smdk4x12.so/system/lib/libhdmi.soMany devices are concerned :Samsung Galaxy S2Samsung Galxy Note 2MEIZU MXpotentialy all devices who embed exynos processor (4210 and 4412) which use Samsung kernel sources.The good news is we can easily obtain root on these devices and the bad is there is no control over it.Ram dump, kernel code injection and others could be possible via app installation from Play Store. It certainly exists many waysto do that but Samsung give an easy way to exploit. This security hole is dangerous and expose phone to malicious apps.Exploitation with native C and JNI could be easily feasible.简单说kernle里 /dev/exynos-mem 此处权限是R/W 谁都可以轻易的修改这个地方，playstore的app就可以了此漏洞 好处 不需要odin 就可以非常简单的root坏处 任何人都可以轻松的控制你的设备，你完全没有隐私可以讲，三星已经知道了，但是这段时间有点心思的人都可以容易的获得你手机上存储的任何东西 随便，我手机上没什么是不能公开的小意思了这个。。……算了，还是不黑三桑，牛2的确良心，不过这CPU是真有问题？随便啦。。。也没啥见不得人的东西，无非就是偶尔会来个卖保险的。。。好用就好...大联想K860赶到很危机感= =！我经常看别人手机里的东西。不过只是看看…有时候会有奇怪的内容。问题不大。没啥影响感觉 。就说你不在一些不明不白的地方下载安装软件，感染病毒……对方怎么控制你的手机？只在谷歌PLAY下东西…… 就说你不在一些不明不白的地方下载安装软件，感染病毒……对方怎么控制你的手机？只在谷歌PLAY下东西…… 别偷看我，反正不去下莫名其妙的东西就行了