[guardian-dev] vuln: malicious Android apps can bypass active VPN configuration

Matej Kovacic matej.kovacic at owca.info
Sat Jan 18 17:01:12 EST 2014


> Bad news for the idea of using the Android VPN support for Tor
> proxying:
> "This vulnerability enables malicious apps  to bypass active VPN
> configuration (no ROOT permissions required) and redirect secure
> data communications to a different network address."

Is this working with OpenVPN for Android too, or only with built-in
VPN services?



More information about the Guardian-dev mailing list