HTC has acknowledged a WiFi issue with some of their Android handsets which could allow any Android application with the ACCESS_WIFI_STATE permission to view all the credentials of a Wi-Fi network. HTC has been working with Google since September to work out a fix and they’ve already patched most of the devices with OTA updates — but they have stated that some devices will need to be updated manually. According to the guys who originally discovered the vulnerability, phones affected by the bug include:

• HTC Desire HD (Froyo, Gingerbread)
• T-Mobile myTouch 4G (Froyo)
• HTC Desire S (Gingerbread)
• HTC Sensation (Gingerbread)
• HTC EVO 3D (Gingerbread)
• HTC Droid Incredible (Froyo)
• HTC Thunderbolt 4G (Froyo)

While most devices have already received the fix, HTC says to check back on their support site next week for more information.

, TheNextWeb

• SourceHTC