A bug has been found in Google's Android mobile platform that allows command-line instructions (jailbroken) to be automatically run with root privileges.
The bug was revealed late last week, and Google said that it had already developed a fix. The operator T-Mobile has, however, not yet said when it will be pushing the update out to users of its G1 handset — the first and, thus far, only handset to use the Android software stack.
"We've been notified of this issue and have developed a fix," Google's spokesperson said. "We are currently working with our partners to push the fix out and are updating the source code base to reflect these changes."
The flaw means any recognisable command line can be run from applications in Android phones that are not using the latest firmware. It also effectively means Android has been reading and automatically interpreting and acting upon inputted text. For example, a commentator on the bug thread on Android's forums noted that a text conversation unexpectedly led to their phone being rebooted.
Source:→ Zdnet News