Recent reports have suggested that the Windows Mobile powered HTC smartphones have a serious Bluetooth vulnerability which could lead to exploitation of data stored on the handset.
According to the reports, it is a flaw in HTC ‘obexfil.dll’ driver that has been the cause of all the troubles and handsets with Windows 6 or 6.1 with this flawed driver are now vulnerable to hacking attacks; however, HTC handsets running Windows Mobile 5 aren’t affected by the vulnerability.
In addition to allowing hackers to access any file on the handset, the vulnerability even allows a hacker to inject malicious code into the victim’s phone, once he manages to connect the handset via Bluetooth.
The serious issue in the HTC handsets has been bring forth by a Spanish security researcher Alberto Moreno Tablado, who alerted HTC users by saying, “If you have an HTC smartphone running Windows Mobile 6 or Windows Mobile 6.1, you may want to think twice before connecting to an untrusted device using Bluetooth.”
The vulnerability could reportedly allow an attacker to access emails, contact details, pictures and other data stored on the victim’s handset.
So, in order to avoid being troubled by the aforementioned vulnerability, the security researcher suggested users to avoid exchanging content via Bluetooth with the other users they don’t know.
and join more than 1700 other followers.
HTC, not Windows Mobile, is the culprit and the more complex and ambitious mobile platforms become, the more likely will there be weaknesses and vulnerabilities discovered. Clearly it is infinitely more difficult to hack a Nokia 3310 than the new iPhone. The fact that most smartphones now come with always-on internet access make things even more complicated.