NOTICE: Scanner updated to look for new flaws! Devices previously patched for first flaw can still be vulnerable to the newer flaws. Vendors are still working on patches/updates for the newer flaws.
The Bluebox "Master key" Security Scanner will scan your device to determine:
- If your system is vulnerable or patched to any of the "master key" security flaws affecting most Android devices (there are multiple 'master key' flaws at this point)
- If your system settings allow 'Untrusted Sources' application installs
- If any installed application on your device is trying to maliciously take advantage of any of the 'master key' security flaws
NOTICE: the scanner currently cannot check .APKs in the /mnt/asec/ (copy protected apps) directory; this is a security limitation enforced by Android OS. You are told how many were skipped, and given a checkbox (if one or more are skipped) to enable seeing the full list of details if you so choose.
Further details of the Android "Master key" security flaw are available at:http://bluebox.com/corporate-blog/bluebox-uncovers-android-master-key/NEXUS USERS: we have seen lots of confusion, so let us clarify. Google has given out patch to other vendors (Samsung, Sony, HTC, etc.), but Google has *not* yet issued updates for their own Nexus devices!! It is unknown why, but speculation is they don't want to do a 4.2.x patch update if 4.3 is coming out very soon. We have Nexus devices too and are anxiously waiting for the update still.