Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Somebody that's affected by this should report it as a remote code execution vulnerability in the PlayStore app.


I'm not affected by this, but that's an interesting idea. I wonder what'll happen if I report this (assuming Google has a place to report vulnerabilities in its products). They'd probably dismiss it as "invalid" because, see, it's not an RCE if it's only exploited by a "trusted party" like Google themselves.


> They'd probably dismiss it as "invalid" because, see, it's not an RCE if it's only exploited by a "trusted party" like Google themselves.

They never learn from Solar Winds, do they ?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: