Security researchers at CISPA Helmholtz Center for Information Security have discovered three vulnerabilities in Apple’s AirDrop feature and two in Google and Samsung’s Quick Share functionality. The flaws could potentially cause crashes but do not allow execution of malicious code. Two of the AirDrop vulnerabilities can be triggered even when the service is set to 'Everyone,' while the third requires acceptance of a file transfer. Researchers developed a tool called 'AirFuzz' to test these issues by sending malformed data packets. In Quick Share, Samsung’s implementation allows processing of data before authentication completes, and three out of seven message types are processed even if they arrive unencrypted. Google’s Windows-based Quick Share client has a use-after-free vulnerability that could theoretically enable malware execution, though reliable exploitation was not achieved. Apple and Samsung are working on fixes, while Google has confirmed the Windows issue.
Procjena pristranosti (Sredina): The article presents findings from security research without overt ideological framing. It focuses on technical details and does not take sides regarding political entities or policies. While the implications of the vulnerabilities could affect user privacy and security, the tone remains objective,詳
Zašto ove ocjene (Činjenice 75 · Objektivnost 65): The article accurately describes the discovery of six vulnerabilities in AirDrop and Quick Share, aligning with the primary source document. However, it omits some technical details like specific vulnerability IDs and the responsible disclosure process. The tone is somewhat alarmist, suggesting pote






