I have discovered a security hole in Samsung Captivate's Recovery mode. The update.zip that is used for re-installation of packages must be normally checked for authenticity and integrity, while none of this done in the Samsung Captivate.
Please see this video of my live demonstration: http://www.youtube.com/watch?v=I2TExFceMq0 Thanks blahsphemer -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
