Vulnerabilities found in remote management software that carriers insist be installed on smart phones and other mobile-enabled devices they sell are likely to put many devices at risk of compromise for some time to come.
Dangerous security flaws were discovered in widely deployed client implementations of the OMA Device Management (OMA-DM) protocol that allows carriers to remotely deploy firmware updates, change device data connection settings, install applications, lock and wipe devices and more.
OMA-DM capabilities vary from carrier to carrier, depending on the features they choose to enable. The technology itself is developed by third-party companies and built by manufacturers into devices that are meant to sold through those carriers.
from The Geeks Technology Pipe http://ift.tt/1ogAtkl
from Blogger http://ift.tt/1vklw4B