There’s yet another Android flaw to contend with following the Stagefright Bug. This one can totally brick an Android phone, and as yet, there’s no fix.
Image: Family O’Abé
Trend Micro’s reporting on a flaw in the mediaserver service in all versions of Android from 4.3 up to 5.1 that can be abused either through a specifically crafted app or specifically coded Web site. The Web flaw should only cause a single reboot of a device, but a compromised app could in theory cause an endless non-responsive reboot loop with a dead screen, or in other words, a completely bricked Android smartphone.
This isn’t quite as critical as the Stagefright bug, given that it’s an exploit that does require some user intervention, either by visiting a web site or downloading an app. Here’s the exploit in action if you get all excited by bricked phones, bearing in mind that this is just a proof of concept at the moment.