Major Samsung Galaxy TouchWiz exploit hard resets a device by just visiting a website

A phone dialer code can hard reset a Galaxy S2, S3, and a bunch of minor devices that use Samsung’s TouchWiz overlay. The idea is that the operator could enter it on the keypad manually to hard reset all of the data. However, it was discovered last month that an SMS could carry the number and reset the device (video above). Now, it seems some folks have tried embedding the call function in a web frame with those numbers. They were able to reset the Samsung Galaxy devices just by having the device visit a website.

It’s as easy as including this in your website:

<frame src="tel:*2767*3855%23" />

Samsung is already working on the issue.

Major Samsung Galaxy TouchWiz exploit hard resets a device by just visiting a website →

(via )

Published by Bramus!

Bramus is a Freelance Web Developer from Belgium. From the moment he discovered view-source at the age of 14 (way back in 1997), he fell in love with the web and has been tinkering with it ever since (more …)