Join Us!

Samsung SM-G950U, S...
 
Notifications
Clear all

Samsung SM-G950U, S8 and Cellebrite error  

  RSS
lasvegascop
(@lasvegascop)
Member

Hi Everyone,

Has anyone encountered this issue?

I had a Samsung SM-G950U. THe phone is a company phone that had a MDM installed on it.

Using Cellebrite 4PC. I tried to acquire the phone and that failed so I had the company remove the MDM software.

Now, upon me trying to acquire the device I am getting a screen that pops up on the device that states "THe Client Has Stopped. Restart the app"

Restarting the app only repeats the same error as does restarting the phone and the computer.

I was time limited so I had to return the phone, but I am sure that I could get it again if I have a solution.

Quote
Posted : 24/06/2017 10:23 pm
4n6art
(@4n6art)
Active Member

What are you trying to extract? Physical? Logical? FS?

If you are getting errors on the physical side - assuming from the "client" has stopped responding which I am guessing you used the cellebrite client to try the acquisition, then I would drop down to the next level and do a File System and then a Logical. You can try the physical again using a different method but if it doesn't work out and you have to return the phone, at least you have the FS and Logical data to work with.

HTH
-=Art=-

ReplyQuote
Posted : 27/06/2017 11:18 pm
lasvegascop
(@lasvegascop)
Member

Tried that, It wouldn't work on any of them.
on one attempt I received a warning that said "Extraction Failed. The device security patch level is not sufficient for this extraction type."
I am not sure if that was File system or physical though.

ReplyQuote
Posted : 28/06/2017 1:03 am
RonS
 RonS
(@rons)
Active Member

lasvegascop,

Please approach Cellebrite support on this as they will need some more details about the Android OS version and the UFED version you are using.

We just tested this device and logical completed with no issues.
You should also be able to perform a file system extraction with the latest UFED 6.2.1

Best regards
Ron Serber

ReplyQuote
Posted : 28/06/2017 1:14 pm
Bolo
 Bolo
(@bolo)
Member

If you get Extraction Failed. The device security patch level is not sufficient for this extraction type it means that exploit (CVE-2016-5195) in Linux was already patched in this device - so Kernel is after Sept 2016…. you cannot use then Adv. ADB for this

ReplyQuote
Posted : 29/06/2017 10:03 pm
CVACCA
(@cvacca)
New Member

and then what is the solution?

ReplyQuote
Posted : 20/04/2018 10:56 pm
Plan_B
(@plan_b)
New Member

Logical only with UFED..

As far as i know is there no root solution without data-loss.

ReplyQuote
Posted : 21/04/2018 5:09 pm
Share: