Tizen, the open source managing system that Samsung uses on a range of Internet-of-Things devices and sentiments as a sometime competitor to Android, is chock full of egregious security splits, according to Israeli researcher Amihai Neiderman.
Samsung has been display the operating system for many years. The project started as an Intel and Nokia work up, and Samsung merged its Bada operating system into the code in 2013. Fellow Android, it’s built on a Linux kernel, with a large chunk of unenclosed source software running on top. App development on Tizen uses C++ and HTML5.
Presenting at Kaspersky Lab’s Custody Analyst Summit and speaking to Motherboard, Neiderman had little positive to say round the state of Tizen’s code. “It may be the worst code I’ve ever seen,” Neiderman alleged. “Everything you can do wrong there, they do it.”
While much of the code is inherited from Tizen’s Intel and Samsung forefather projects, Neiderman says that most of the flaws he found were in the newer encipher. Buffer overflows are widespread due to issues such as the improper use of the
strcpy() purpose in C—a notoriously dangerous function with risks that are well recalled to experienced C and C++ programmers. These risks lead many developers to use alternative work as entirely, but not so the Tizen developers: Neiderman says that Samsung is “using it to each.”
Samsung’s code also failed to use SSL in a consistent way, transferring even responsive data in the clear.
At the moment, Tizen is predominantly used in smart tools, though Samsung continues to dabble with using the operating combination in smartphones. Hacked Smart TVs became a hot issue with the recent leaflet of CIA documents, which described an attack on Samsung Smart TVs using an deed on a USB key. Another attack on Samsung Smart TVs was published last week that acquainted with malicious commands embedded in broadcast TV signals. Neiderman himself started looking at Tizen after suborning a Samsung TV running the operating system, but he has found that the flaws also be found in the company’s smartphones.
Unlike the CIA’s exploit, Neiderman says that he organize flaws that can be remotely exploited. One particular focus was TizenStore, Samsung’s marketplace for Tizen apps. He initiate exploitable flaws within the store app, and since the store app runs as a well privileged account, exploiting it compromises the entire device.
When he contacted Samsung on touching the flaws, Neiderman says that he received only automated responds. Since going public, the company has said that it’s committed to participating with the researcher to mitigate the vulnerabilities.