The Samsung“find mobile phone Find My Mobile”function the presence of 0Day vulnerabilities-vulnerability warning-the black bar safety net

ID MYHACK58:62201455225
Type myhack58
Reporter 佚名
Modified 2014-10-29T00:00:00



The U.S. National Institute of standards and Technology(NIST)to the majority of users warned: Samsung mobile phone“to retrieve mobile phone Find my mobile”function the presence of 0Day vulnerabilities.

About the Find My Mobile

The Samsung company after modification, to get back phone the Find my mobile function has been turned into a mobile network service function. Samsung users can of the lost mobile phone locate, remote device settings warning, remote lock The machine. So the phone even if it is stolen, nobody can use it.

! Samsung retrieve mobile phone function where the vulnerability is by the Egyptian information security officer Mohamed Abdelbaset Elnoby found. The vulnerability is a cross site request forgery(CSRF attack is. An attacker can exploit this vulnerability a remote control to lock or not to lock The machine, even can also set ringtone.

[1] [2] next