{"id":83247,"date":"2020-05-07T13:16:52","date_gmt":"2020-05-07T16:16:52","guid":{"rendered":"https:\/\/www.smart-gsm.com\/blog\/?p=83247"},"modified":"2020-05-07T13:22:22","modified_gmt":"2020-05-07T16:22:22","slug":"samsung-actualizacion-vulnerabilidad-qmage-2014","status":"publish","type":"post","link":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/","title":{"rendered":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Una vez m\u00e1s el Project Zero de <a href=\"https:\/\/www.smart-gsm.com\/fabricantes\/google\">Google<\/a>, el departamento de desarrolladores creado para detectar vulnerabilidades en toda clase de dispositivos m\u00f3viles, dieron con una falla en todos los smartphones de Samsung fabricados desde 2014 hasta la fecha. Y en el d\u00eda de hoy <strong><a href=\"https:\/\/www.smart-gsm.com\/fabricantes\/samsung\">Samsung<\/a><\/strong> distribuye una importante actualizaci\u00f3n que da t\u00e9rmino a semejante falla.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Si bien la mayor\u00eda de los bugs que pueden vulnerar la seguridad de un dispositivo suelen requerir de la interacci\u00f3n de los usuarios para que se abra una ventana de oportunidad para realizar el da\u00f1o, en este caso est\u00e1bamos hablando de una falla que no requiere de ninguna intervenci\u00f3n. Es decir, una vulnerabilidad del tipo &#8220;zero-click&#8221;.<\/p>\n\n\n\n<!--more-->\n\n\n\n<h2 class=\"wp-block-heading\">Todos los smartphones de Samsung lanzados de 2014 hasta ac\u00e1 deben descargar su \u00faltima actualizaci\u00f3n<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">El ataque pod\u00eda realizarse gracias a c\u00f3mo manejaban los smartphones de Samsung fabricados entre 2014 hasta el d\u00eda de la fecha las im\u00e1genes Qmage de Android. Un formato personalizado cuya extensi\u00f3n es .qmg y que suele almacenaerse de forma autom\u00e1tica en la Skia Library o Librer\u00eda Skia en donde se realizan diferentes procesos sin la autorizaci\u00f3n del usuario.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Lo que podr\u00eda hacer entonces un hacker malintencionado es bombardear un smartphones con m\u00faltiples mensajes de texto multimedia (MMS) que intentan localizar la Librer\u00eda Skia en la memoria del dispositivo. Desde Project Zero se\u00f1alan que el proceso suele tomar entre 50 a 300 MMS para localizar la Librer\u00eda Skia.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Una vez se identifica la posici\u00f3n de ella, all\u00ed es cuando se env\u00eda la imagen Qmage que produce el da\u00f1o. B\u00e1sicamente, el dispositivo queda inutilizado y todo esto sin que un usuario pueda hacer nada para impedir el ataque. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Y aunque podr\u00eda parecer que recibir m\u00e1s de 100 MMS es alerta suficiente para estar recibiendo este ataque los desarrolladores de Project Zero descubrieron que tambi\u00e9n es posible enviar todos los mensajes MMS necesarios bloqueando la notificaci\u00f3n de los mismos.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Pero la situaci\u00f3n ya est\u00e1 bajo control ya que Samsung distribuye una importante actualizaci\u00f3n que pone fin a esta vulnerabilidad con el almacenamiento de las im\u00e1genes Qmage. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>Samsung soluciona una vulnerabilidad presente en todos sus smartphones de 2014 hasta la fecha gracias al trabajo de Project Zero.<\/p>\n","protected":false},"author":2,"featured_media":61790,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":[],"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[4122],"tags":[13],"class_list":["post-83247","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-samsung","tag-samsung"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog<\/title>\n<meta name=\"robots\" content=\"noindex, follow\" \/>\n<meta property=\"og:locale\" content=\"es_ES\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog\" \/>\n<meta property=\"og:description\" content=\"Samsung soluciona una vulnerabilidad presente en todos sus smartphones de 2014 hasta la fecha gracias al trabajo de Project Zero.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/\" \/>\n<meta property=\"og:site_name\" content=\"SmartGSM - Blog\" \/>\n<meta property=\"article:published_time\" content=\"2020-05-07T16:16:52+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-07T16:22:22+00:00\" \/>\n<meta name=\"author\" content=\"Daniel P\u00e9rez Alvarez\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/\"},\"author\":{\"name\":\"Daniel P\u00e9rez Alvarez\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/#\\\/schema\\\/person\\\/fcacd1fda0b7e21ea34abefb8fdee5da\"},\"headline\":\"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones\",\"datePublished\":\"2020-05-07T16:16:52+00:00\",\"dateModified\":\"2020-05-07T16:22:22+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/\"},\"wordCount\":384,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/07\\\/Samsung-sign-1.jpg\",\"keywords\":[\"samsung\"],\"articleSection\":[\"Samsung\"],\"inLanguage\":\"es-AR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/\",\"url\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/\",\"name\":\"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/07\\\/Samsung-sign-1.jpg\",\"datePublished\":\"2020-05-07T16:16:52+00:00\",\"dateModified\":\"2020-05-07T16:22:22+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/#\\\/schema\\\/person\\\/fcacd1fda0b7e21ea34abefb8fdee5da\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#breadcrumb\"},\"inLanguage\":\"es-AR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"es-AR\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/07\\\/Samsung-sign-1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/wp-content\\\/uploads\\\/2017\\\/07\\\/Samsung-sign-1.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/samsung-actualizacion-vulnerabilidad-qmage-2014\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/\",\"name\":\"smartGSM noticias de tel\u00e9fonos\",\"description\":\"smartGSM\",\"alternateName\":\"smartGSM\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"es-AR\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.smart-gsm.com\\\/blog\\\/#\\\/schema\\\/person\\\/fcacd1fda0b7e21ea34abefb8fdee5da\",\"name\":\"Daniel P\u00e9rez Alvarez\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es-AR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g\",\"caption\":\"Daniel P\u00e9rez Alvarez\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog","robots":{"index":"noindex","follow":"follow"},"og_locale":"es_ES","og_type":"article","og_title":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog","og_description":"Samsung soluciona una vulnerabilidad presente en todos sus smartphones de 2014 hasta la fecha gracias al trabajo de Project Zero.","og_url":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/","og_site_name":"SmartGSM - Blog","article_published_time":"2020-05-07T16:16:52+00:00","article_modified_time":"2020-05-07T16:22:22+00:00","author":"Daniel P\u00e9rez Alvarez","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#article","isPartOf":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/"},"author":{"name":"Daniel P\u00e9rez Alvarez","@id":"https:\/\/www.smart-gsm.com\/blog\/#\/schema\/person\/fcacd1fda0b7e21ea34abefb8fdee5da"},"headline":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones","datePublished":"2020-05-07T16:16:52+00:00","dateModified":"2020-05-07T16:22:22+00:00","mainEntityOfPage":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/"},"wordCount":384,"commentCount":0,"image":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#primaryimage"},"thumbnailUrl":"https:\/\/www.smart-gsm.com\/blog\/wp-content\/uploads\/2017\/07\/Samsung-sign-1.jpg","keywords":["samsung"],"articleSection":["Samsung"],"inLanguage":"es-AR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/","url":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/","name":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones - SmartGSM - Blog","isPartOf":{"@id":"https:\/\/www.smart-gsm.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#primaryimage"},"image":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#primaryimage"},"thumbnailUrl":"https:\/\/www.smart-gsm.com\/blog\/wp-content\/uploads\/2017\/07\/Samsung-sign-1.jpg","datePublished":"2020-05-07T16:16:52+00:00","dateModified":"2020-05-07T16:22:22+00:00","author":{"@id":"https:\/\/www.smart-gsm.com\/blog\/#\/schema\/person\/fcacd1fda0b7e21ea34abefb8fdee5da"},"breadcrumb":{"@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#breadcrumb"},"inLanguage":"es-AR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/"]}]},{"@type":"ImageObject","inLanguage":"es-AR","@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#primaryimage","url":"https:\/\/www.smart-gsm.com\/blog\/wp-content\/uploads\/2017\/07\/Samsung-sign-1.jpg","contentUrl":"https:\/\/www.smart-gsm.com\/blog\/wp-content\/uploads\/2017\/07\/Samsung-sign-1.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.smart-gsm.com\/blog\/samsung-actualizacion-vulnerabilidad-qmage-2014\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Inicio","item":"https:\/\/www.smart-gsm.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Samsung le pone fin a seis a\u00f1os de una vulnerabilidad cr\u00edtica en sus smartphones"}]},{"@type":"WebSite","@id":"https:\/\/www.smart-gsm.com\/blog\/#website","url":"https:\/\/www.smart-gsm.com\/blog\/","name":"smartGSM noticias de tel\u00e9fonos","description":"smartGSM","alternateName":"smartGSM","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.smart-gsm.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"es-AR"},{"@type":"Person","@id":"https:\/\/www.smart-gsm.com\/blog\/#\/schema\/person\/fcacd1fda0b7e21ea34abefb8fdee5da","name":"Daniel P\u00e9rez Alvarez","image":{"@type":"ImageObject","inLanguage":"es-AR","@id":"https:\/\/secure.gravatar.com\/avatar\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/43a31aba236661f47cd6a1d77bd6cabaacb123e99bc14546b2be829f3369b5dd?s=96&d=mm&r=g","caption":"Daniel P\u00e9rez Alvarez"}}]}},"_links":{"self":[{"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/posts\/83247","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/comments?post=83247"}],"version-history":[{"count":0,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/posts\/83247\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/media\/61790"}],"wp:attachment":[{"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/media?parent=83247"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/categories?post=83247"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.smart-gsm.com\/blog\/wp-json\/wp\/v2\/tags?post=83247"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}