Oups, ZTE seems to have forgotten something, a backdoor…
According to XDA developers, it would seem that ZTE would have forgotten a back door in the different Android devices available on the market. According to the developers who discovered the issues, it seems any apps that would know how to request access (legitimate or not) would be granted with root"root" is the default username/account created by linux/unix OS. The "root" is the administrator of the machine, it can run all commands and can access any files. permissions.
It seems this is a forgotten engineering tool and it should have been removed in the production rom but still be aware and careful when you install any new app. Please, read the statement from shabbypenguin:
problem is as you can see from the pastebin all it requires is just a simple password and rooted shell is handed over…at this time there is no evidence to even support that this can even remotely being activated, however this is a big security concern regardless. for all intents and purposes this could be a debugging tool left in, however just seems oddly convenient for multiple software versions on separate phones on separate carriers
Of course, in front of this huge security risk, ZTE promised a quick patch to resolve this problem but in the mean time I invite you to be extremely cautious!
Source : XDA Developers
- None found