Developers working on the Replicant OS Project has claimed to uncover a backdoor into the device’s file-system for several Samsung Galaxy mobile devices using the stock Android image. In particular, the proprietary software that is in charge of handling the communications with the modem, which supports a set of requests based on IPC protocol, called RFS commands. By sending certain crafted commands, the phone’s storage (/sdcard) could be accessed remotely, causing sensitive data leak.
A list of Samsung devices including Galaxy S 3 and Galaxy Note 2 are affected.
The original paper could be found here: http://redmine.replicant.us/projects/replicant/wiki/SamsungGalaxyBackdoor .