The vulnerabilities of software or systems become a very serious issue and it has been noticed with the passage of time with all the appearances of these that have occurred, that is why even in social networks these problems have occurred as in WhatsApp and Facebook thats why we analyze some of these vulnerabilities that have passed and affected these Social Networks.
Social media vulnerabilities that occurred
▸CVE-2019-3568 buffer overflow vulnerability in WhatsApp
WhatsApp had revealed the existence of a critical vulnerability in the application that allows the well-known Pegasus spyware to be installed on Android and iOS devices just by making a call to the phone number that is being compromised. The vulnerability has already been repaired and this vulnerability was very dangerous from what we saw.
WhatsApp VOIP that allow remote code execution on the victim’s device when specially designed SRTP packets are sent to the target phone number. In this sense, to exploit the flaw the attacker only needs to call a vulnerable device. Furthermore, the victim does not even need to accept the call for their equipment to be compromised and even the call disappears from the registry.
▸Facebook vulnerability that made it easy to create malware
A vulnerability in Facebook Messenger, which could be exploited by malware to run using the popular instant messaging client. The vulnerability, which was fixed, affected version 480.5 of the program.
The detected fault consisted of a call to the path “C: \ python27 \ Powershell.exe”, which corresponds to a directory created by the Python interpreter installer and which does not usually exist on most computers. A malware could create this same path without requiring administrator privileges to facilitate the execution of the malware by taking advantage of this call.
This is to become aware and be more cautious of these problems that unfortunately are found with quite a lot of recurrence and it is important to understand that if the best known and most used applications can happen this then it can happen to anyone.
