The vulnerability exists only in Android OS 4.3 Jellybean and below.
However no patch not forthcoming.
Now Rapid7 reached out to Google to patch this critical vulnerability and they received a shocking reply from Google.
Google has stopped providing security patches for Android 4.3 jelly bean and below versions.
This was the reply a security researcher from Metasploit received from Google.
The surprised security researcher, Tod Beardsley from Rapid7 Metasploit community reported on theblogpost.
So, Google is no longer going to be providing patches for 4.3.
This is some eyebrow-raising news.
Tod Beardsley stated that this as the most bizarre decision by Google.
source: www.techworm.net
