Mobile

Microsoft confirms Windows Phone Mango SMS exploit, fix on the way

NOTE: GrowthBeat tickets go up $200 this Friday at 5pm Pacific. VentureBeat is gathering the best and brightest in modern digital marketing to help declutter the landscape, simplify the functions, clarify the goals, and point the way to success. Get the full scoop here, and register by Friday to save!

Microsoft has confirmed the existence of an SMS denial-of-service exploit for Windows Phone that can reboot devices and kill access to messaging functionality.

The company says it’s exploring the issue and working on a fix, reports The Verge.

The exploit, first discovered by WinRumors yesterday, simply involves sending a text message to any Windows Phone 7.5 (Mango) device, which causes the phone to reboot and disable the messaging hub. It can also be triggered with a Facebook or Windows Live message. WinRumors tested the exploit across multiple devices and found that it’s likely rooted in the way the Windows Phone OS messaging hub functions.

Luckily, it doesn’t appear that the exploit is widely known at this time, so Windows Phone users shouldn’t have too much to worry about yet. Microsoft has the ability to push updates to Windows Phone devices over-the-air, which it will likely take advantage of to make sure users are fully protected.

Both iOS and Android have faced SMS exploits as well, though WinRumors notes that this particular issue seems more like a bug with Windows Phone rather than a sophisticated security breach.

Check out a demo of the exploit below:

0 comments