½üÈÕ£¬±±¾©¾¯·½ÆÆ»ñÁËÒ»ÆðÌØ´ó·Ç·¨»ñÈ¡¹«Ãñ¸öÈËÐÅÏ¢°¸£¬²»·¨·Ö×ÓÔÚijЩÌض¨ÍøÕ¾ÉϼÓ×°´úÂ룬ֻҪÓû§ä¯ÀÀ£¬ÆäÊÖ»úºÅ¾Í»á±»×¥È¡¡£Êܺ¦ÕßСÍõ¾ÍÔÚÊÖ»úÉÏä¯ÀÀÁ˸ÃÍøÒ³ºó£¬½üÒ»ÖÜÄÚ½Óµ½ÁËÊýÊ®¸öÍÆÏúµç»°£¬²»·¦±£ÏÕ¡¢½è´ûºÍÊÛºó¿Í·þ¡£¶ø³ýÁËͨ¹ýä¯ÀÀÍøÒ³¼Ç¼ץȡÓû§ÐÅÏ¢Í⣬²¡¶¾Èí¼þÒ²ÊDz»·¨·Ö×ÓÇÔÈ¡Óû§Òþ˽µÄÖ÷Á÷ÇþµÀ¡£

ÈÕÇ°£¬Öйú·´ÍøÂ粡¶¾ÁªÃË£¨ANVA£©ÆعâÁËÒ»¿îÈí¼þStrong Service¡£¾ÝϤ£¬¸ÃÈí¼þÀûÓÃAndroid Media Projection ·þÎñÖдæÔÚµÄÆÁĻ¼ÖÆ©¶´£¨CVE-2015-3878£©ÇÔÈ¡Óû§Òþ˽£¬»áÓ°Ïì´îÔØAndroid 5.0-6.0ϵͳµÄ°²×¿ÊÖ»ú¡£Ä¿Ç°£¬ÌÚѶÊÖ»ú¹Ü¼ÒÒÀÍÐ×ÔÑÐɱ¶¾ÒýÇæTAV£¬ÒÑÈ«Ãæ²éÕâ¿îɱÕâ¿î²¡¶¾Èí¼þ¡£

Õâ¿îÈí¼þ¾¿¾¹ÊÇÈçºÎ×öµ½ÇÔÈ¡Óû§Òþ˽ÄØ£¿ÌÚѶÊÖ»ú¹Ü¼ÒÑîÆô²¨·ÖÎö£¬Ê×ÏÈ£¬²»·¨·Ö×Ó»áÌæ»»Android Media Projection ·þÎñ·¢³öµÄµ¯´°£¬ÒÔ´ËÓÕʹÓû§µã»÷²¢ÊÚȨӦÓûñÈ¡ÆÁÄ»ÄÚÈÝ¡£¶øÔÚ¸ÃÈí¼þÆô¶¯ºó£¬»á×Ô¶¯Òþ²Øͼ±ê£¬²¢ÔÚÓû§²»ÖªÇéµÄÇé¿ö϶ÔÆÁÄ»³ÖÐø½Øͼ²¢ÉÏ´«£»Í¬Ê±£¬ºǫ́×Ô¶¯À¹½Ø¶ÌÐÅ£¬²¢½«Óû§µÄWiFiÃÜÂëµÈÖØÒªÐÅÏ¢ÉÏ´«µ½Ö¸¶¨·þÎñÆ÷£»×îºó£¬»ñÈ¡Ö¸¶¨·þÎñÇøÏ·¢µÄÖ¸Áî¶ÔÓû§ÊÖ»ú½øÐÐÔ¶³Ì¿ØÖÆ¡£

£¨Í¼£ºStrong Service²¡¶¾Èí¼þÇÔÈ¡Óû§Òþ˽£©

¸ù¾ÝÌÚѶÊÖ»ú¹Ü¼ÒµÄ²¡¶¾²éɱÊý¾Ý£¬Strong ServiceÈí¼þ°üº¬ÃûΪ“a.privacy.dingwe.c”µÄľÂí²¡¶¾¡£¸Ã²¡¶¾»áαװ³ÉϵͳӦÓã¬Í¨¹ýÍøÂçÉÏ´«Óû§µÄµØÀíλÖÃÐÅÏ¢¡¢ä¯ÀÀÆ÷ÊéÇ©¡¢Í¨Ñ¶Â¼¡¢¶ÌÐÅÄÚÈݵÈÒþ˽ÐÅÏ¢£¬¸øÓû§Ôì³ÉÒþ˽й¶¡£

Òþ˽й¶ÏÖÏóÐèÒªÖØÊÓ£¬Òò²»·¨·Ö×ÓÇÔÈ¡ÁËÓû§µÄ¸öÈËÐÅÏ¢ºóÓпÉÄÜÕ¹¿ªÕ©Æ­¡£¸ù¾ÝлªÉç×î½üµÄ±¨µÀ£¬Ä¿Ç°90£¥ ÒÔÉϵĵçÐÅÍøÂçÕ©Æ­°¸¼þÊÇÎ¥·¨·Ö×ÓÕÆÎÕÁ˹«ÃñÏêϸÐÅÏ¢ºó½øÐеġ£¶ø´ÓÒÑÆÆ»ñ°¸¼þ¿´£¬ºÚ¿Í¹¥»÷ÈÔÊǹ«Ãñ¸öÈËÐÅϢ鶵ÄÖ÷ÒªÇþµÀ¡£ÓÉ´Ë¿´À´£¬¸öÈËÐÅϢй¶ÎÊÌâÐèÒýÆðÓû§µÄ¸ß¶ÈÖØÊÓ¡£

£¨Í¼£ºÌÚѶÊÖ»ú¹Ü¼ÒÈ«Ãæ²éɱStrong ServiceÈí¼þ£©

ÄÇôÓû§ÔÚÊÖ»úµÄʹÓùý³ÌÖУ¬Ó¦ÈçºÎ±ÜÃⲡ¶¾Èí¼þÇÔÈ¡Òþ˽ÐÅÏ¢ÄØ£¿ÌÚѶÊÖ»ú¹Ü¼Ò°²È«×¨¼ÒÑîÆô²¨Ìá³öÁËÒÔÏÂÈýµã½¨Òé¡£ÆäÒ»£¬Óû§ÔÚÈÕ³£Éú»îÖÐÓ¦¼ÓÇ¿·À·¶£¬Í×ÉÆ´¦Àíº¬ÓÐÐÕÃû¡¢µØÖ·ºÍÊÖ»úºÅÂëµÄµ¥¾Ý£¬ÔÚ¶ªÆú֮ǰͿĨµô¸öÈËÐÅÏ¢£¬ÒÔ·À±»ËûÈËÀûÓá£

Æä¶þ£¬°µ²ØľÂí²¡¶¾µÄ¶ñÒâÈí¼þÒ»°ãͨ¹ýÍøÒ³µ¯´°¡¢·ÇÕý¹æµÄÊÖ»ú×ÊÔ´ÏÂÔØÍøÕ¾µÈ´«²¥£¬Òò´ËÓû§ÔÚÏÂÔØÓ¦ÓÃʱӦ±ÜÃâÕâЩÇþµÀ£¬Ñ¡Ôñ¹ÙÍø»òÕßÓ¦Óñ¦µÈÕý¹æÇþµÀ£¬ÒÔÃâ²»É÷ÖÐÕУ¬µ¼Ö²ƲúËðʧ£»

ÆäÈý£¬Óû§¿ÉÒÔ½èÖúÌÚѶÊÖ»ú¹Ü¼ÒµÈ°²È«¹¤¾ß·À·¶Strong ServiceµÈ²¡¶¾Èí¼þ¡£µ±Óû§ÏÂÔØÈí¼þʱ£¬ÌÚѶÊÖ»ú¹Ü¼Ò»á×Ô¶¯É¨Ãèʶ±ð£¬Ò»µ©·¢ÏÖÈí¼þDZ²Ø·çÏջᲢ½øÐзçÏÕÏîÌáÐÑ£¬×èÖ¹Óû§½øÐа²×°²Ù×÷¡£

(ÔðÈα༭£º¶¬ÌìµÄÓî)