PT-2014-8480 · Samsung · Samsung Mobile Devices
Publicado
2014-10-24
·
Atualizado
2014-10-24
·
CVE-2014-8346
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Samsung mobile devices (affected versions not specified)
Description
The issue concerns the Remote Controls feature on Samsung mobile devices, which fails to validate the source of lock-code data received over a network. This makes it easier for remote attackers to cause a denial of service by locking the screen with an arbitrary code, triggered by unexpected Find My Mobile network traffic.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Samsung Mobile Devices