{"id":232975,"date":"2022-07-01T06:16:05","date_gmt":"2022-07-01T08:16:05","guid":{"rendered":"https:\/\/teknomers.com\/fr\/amazon-corrige-discretement-la-vulnerabilite-de-gravite-elevee-dans-lapplication-android-photos\/"},"modified":"2022-07-01T06:16:05","modified_gmt":"2022-07-01T08:16:05","slug":"amazon-corrige-discretement-la-vulnerabilite-de-gravite-elevee-dans-lapplication-android-photos","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/amazon-corrige-discretement-la-vulnerabilite-de-gravite-elevee-dans-lapplication-android-photos\/","title":{"rendered":"Amazon corrige discr\u00e8tement la vuln\u00e9rabilit\u00e9 de \u00ab\u00a0gravit\u00e9 \u00e9lev\u00e9e\u00a0\u00bb dans l&#8217;application Android Photos"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>Amazon, en d\u00e9cembre 2021, a corrig\u00e9 une vuln\u00e9rabilit\u00e9 de haute gravit\u00e9 affectant son <a rel=\"nofollow noopener\" href=\"https:\/\/www.amazon.com\/Amazon-Photos\/b?ie=UTF8&amp;node=13234696011\" target=\"_blank\">Application photos<\/a> pour Android qui aurait pu \u00eatre exploit\u00e9e pour voler les jetons d&#8217;acc\u00e8s d&#8217;un utilisateur.<\/p>\n<p>&#8220;Le jeton d&#8217;acc\u00e8s Amazon est utilis\u00e9 pour authentifier l&#8217;utilisateur sur plusieurs API Amazon, dont certaines contiennent des donn\u00e9es personnelles telles que le nom complet, l&#8217;e-mail et l&#8217;adresse&#8221;, ont d\u00e9clar\u00e9 Jo\u00e3o Morais et Pedro Umbelino, chercheurs de Checkmarx. <a rel=\"nofollow noopener\" href=\"https:\/\/checkmarx.com\/blog\/amazon-confirmed-and-fixed-a-high-severity-vulnerability-of-broken-authentication-in-amazon-photos-android-app\/\" target=\"_blank\">a dit<\/a>.  &#8220;D&#8217;autres, comme l&#8217;API Amazon Drive, permettent \u00e0 un attaquant d&#8217;avoir un acc\u00e8s complet aux fichiers de l&#8217;utilisateur.&#8221;<\/p>\n<p>La soci\u00e9t\u00e9 isra\u00e9lienne de test de s\u00e9curit\u00e9 des applications a signal\u00e9 le probl\u00e8me \u00e0 Amazon le 7 novembre 2021, apr\u00e8s quoi le g\u00e9ant de la technologie a d\u00e9ploy\u00e9 un correctif le 18 d\u00e9cembre 2021.<\/p>\n<p>La fuite est le r\u00e9sultat d&#8217;une mauvaise configuration dans l&#8217;un des composants de l&#8217;application nomm\u00e9 &#8220;com.amazon.gallery.thor.app.activity.ThorViewActivity&#8221; qui est d\u00e9fini dans le <a rel=\"nofollow noopener\" href=\"https:\/\/developer.android.com\/guide\/topics\/manifest\/manifest-intro\" target=\"_blank\">Fichier AndroidManifest.xml<\/a> et qui, lorsqu&#8217;il est lanc\u00e9, initie une requ\u00eate HTTP avec un en-t\u00eate contenant le jeton d&#8217;acc\u00e8s.<\/p>\n<div class=\"separator\" style=\"clear: both\"><img decoding=\"async\" alt=\"Vuln\u00e9rabilit\u00e9 de l'application Amazon Photo\" border=\"0\" data-original-height=\"443\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/07\/1656663365_315_Amazon-corrige-discretement-la-vulnerabilite-de-gravite-elevee-dans-lapplication.jpg\" title=\"Vuln\u00e9rabilit\u00e9 de l'application Amazon Photo\" \/><\/div>\n<p>En un mot, cela signifie qu&#8217;une application externe pourrait envoyer un <a rel=\"nofollow noopener\" href=\"https:\/\/developer.android.com\/guide\/components\/intents-filters\" target=\"_blank\">intention<\/a> &#8211; un message pour faciliter la communication entre les applications &#8211; pour lancer l&#8217;activit\u00e9 vuln\u00e9rable en question et rediriger la requ\u00eate HTTP vers un serveur contr\u00f4l\u00e9 par l&#8217;attaquant et extraire le jeton d&#8217;acc\u00e8s.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowdsec-tour-d\" target=\"_blank\" title=\"CyberSecurity\"><img loading=\"lazy\" decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/07\/1656663365_395_Amazon-corrige-discretement-la-vulnerabilite-de-gravite-elevee-dans-lapplication.jpg\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>Appelant le bogue un cas d&#8217;authentification cass\u00e9e, la soci\u00e9t\u00e9 de cybers\u00e9curit\u00e9 a d\u00e9clar\u00e9 que le probl\u00e8me aurait pu permettre aux applications malveillantes install\u00e9es sur l&#8217;appareil de saisir les jetons d&#8217;acc\u00e8s, accordant \u00e0 l&#8217;attaquant les autorisations d&#8217;utiliser les API pour les activit\u00e9s de suivi.<\/p>\n<p>Cela peut aller de la suppression de fichiers et de dossiers dans Amazon Drive \u00e0 m\u00eame l&#8217;exploitation de l&#8217;acc\u00e8s pour organiser une attaque de ransomware en lisant, cryptant et r\u00e9\u00e9crivant les fichiers d&#8217;une victime tout en effa\u00e7ant son historique. <\/p>\n<p>Checkmarx a en outre not\u00e9 que la vuln\u00e9rabilit\u00e9 aurait pu avoir un impact plus large \u00e9tant donn\u00e9 que les API exploit\u00e9es dans le cadre de sa preuve de concept (PoC) ne constituent qu&#8217;un petit sous-ensemble de l&#8217;ensemble de l&#8217;\u00e9cosyst\u00e8me Amazon.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/07\/amazon-quietly-patches-high-severity.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Amazon, en d\u00e9cembre 2021, a corrig\u00e9 une vuln\u00e9rabilit\u00e9 de haute gravit\u00e9 affectant son Application photos pour Android qui aurait pu \u00eatre exploit\u00e9e pour voler les jetons d&#8217;acc\u00e8s d&#8217;un utilisateur. &#8220;Le jeton d&#8217;acc\u00e8s Amazon est utilis\u00e9 pour authentifier l&#8217;utilisateur sur plusieurs API Amazon, dont certaines contiennent des donn\u00e9es personnelles telles que le nom complet, l&#8217;e-mail et [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":232976,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[9696,8738,4168,6815,4158,4165,4161,429,33966,1053,11128,4157,4159,4171,4170,838,4167,4160,4163,4162,5522,4172,4169,4166,3667,4164],"class_list":["post-232975","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-amazon","tag-android","tag-comment-pirater","tag-corrige","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-dans","tag-discretement","tag-elevee","tag-gravite","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-lapplication","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-photos","tag-securite-informatique","tag-securite-internet","tag-violation-de-donnees","tag-vulnerabilite","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/232975","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=232975"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/232975\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/232976"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=232975"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=232975"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=232975"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}