Tag Archives: Security Hole In Amazon’s Kindle Touch

Security Flaw In Amazon’s Kindle Touch

The H’s associates at heise Security demonstrate a proof-of-concept exploit for the Kindle Touch which causes the kindle to reboot. There is a security flaw in web browser built into Amazon’s Kindle Touch eBook reader. Whenever any user navigates any specially crafted webpage the kindle executes arbitary shell commands as root that allows attackers to access the eBook reader’s underlying Linux system and potentially steal the access credentials for the Amazon account linked to the Kindle, or purchase books with account of Kindle’s user. Check this report and this video.