Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider com.bluebird.system.koreanpost.IsdcardRemoteService. A local attacker can bind to the AIDL-type service to copy and delete arbitrary files from devices storage with system-level permissions.
Version 1.4.4 is vulnerable, vendor reverted vulnerable versions to older version: 1.3.6
The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.
The attacks and consequences of improperly exporting a component may depend on the exported component: