6 matches found
EUVD-2015-4062
Malware in sbrugna...
CVE-2015-4034
The createFromParcel method in the com.absolute.android.persistence.MethodSpec class in Samsung Galaxy S5s allows remote attackers to execute arbitrary files via a crafted Parcelable object in a serialized MethodSpec object...
Design/Logic Flaw
The createFromParcel method in the com.absolute.android.persistence.MethodSpec class in Samsung Galaxy S5s allows remote attackers to execute arbitrary files via a crafted Parcelable object in a serialized MethodSpec object...
CVE-2015-4034
The createFromParcel method in the com.absolute.android.persistence.MethodSpec class in Samsung Galaxy S5s allows remote attackers to execute arbitrary files via a crafted Parcelable object in a serialized MethodSpec object...
CVE-2015-4034
Affected software/impact : Samsung Galaxy S5's com.absolute.android.persistence.MethodSpec class is vulnerable to remote code execution via crafted Parcelable objects. The root cause is in the createFromParcel deserialization flow, where dynamic class loading is performed without restricting the ...
(0Day) (Mobile Pwn2Own) Samsung Galaxy S5 MethodSpec Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable Samsung Galaxy S5s. Authentication is not required to exploit this vulnerability. The specific flaw exists within the com.absolute.android.persistence.MethodSpec Class. The createFromParcel method performs dynamic...