📄 Samsung Quram DNG Remote Code Execution

A vulnerability exists in Samsung's image decoding library libimagecodec.quram.so responsible for parsing Digital Negatives DNG. A malformed DNG containing oversized IFD entries can cause heap corruption. With precise heap grooming, this condition may lead to remote code execution when the...

CVE-2016-2567

secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 Note 3 and SM-G920F build G920FXXU2COH2 Galaxy S6 devices allows attackers to bypass URL filtering by inserting an "exceptional URL" in the query string, as demonstrated by the...

CVE-2016-4031

Samsung SM-G920F build G920FXXU2COH2 Galaxy S6, SM-N9005 build N9005XXUGBOK6 Galaxy Note 3, GT-I9192 build I9192XXUBNB1 Galaxy S4 mini, GT-I9195 build I9195XXUCOL1 Galaxy S4 mini LTE, and GT-I9505 build I9505XXUHOJ2 Galaxy S4 devices allow attackers to send AT commands by plugging the device into...

Libomacp.so integer overflow vulnerability in Samsung Galaxy S4 to S7 devices

The Samsung Galaxy S4 and others are smart mobile devices released by the South Korean company Samsung Samsung. An integer overflow vulnerability exists in libomacp.so in Samsung Galaxy S4 to S7 devices. The vulnerability can be exploited by an attacker to cause a denial of service heap corruptio...

Immediately following Google's footsteps, Samsung repair Galaxy high-risk vulnerabilities-vulnerability warning-the black bar safety net

Samsung this month released the latest version of bug fixes, contains the arbitrary code execution, memory error, reset factory settings, and re-activate the locks, FRP/RL）vulnerability patch. The official Google fix Galaxy vulnerability With this update, the official total fix for Galaxy devices...

Directory traversal

Directory traversal vulnerability in the SwiftKey language-pack update implementation on Samsung Galaxy S4, S4 Mini, S5, and S6 devices allows remote web servers to write to arbitrary files, and consequently execute arbitrary code in a privileged context, by leveraging control of the...

Backdoor in Samsung Galaxy Devices Could Give Attackers Access

UPDATE – Samsung is contending claims last week that several of their Galaxy branded devices have a backdoor that could give an attacker “over-the-air remote control,” access to the phone’s file system and turn them into spying tools. Developers behind the Replicant project, a Cyanogen-based...

Backdoor found in Samsung Galaxy Devices, allows Hackers to remotely access/modify Data

Google’s Android operating system may be open source, but the version of Android that runs on most phones, tablets, and other devices includes proprietary, closed-source components. Phone makers, including Samsung ships its Smartphones with a modified version of Android, with some pre-installed...