39 matches found
EUVD-2015-7788
Malware in sbrugna...
EUVD-2016-7795
Malware in sbrugna...
EUVD-2015-7790
Malware in sbrugna...
EUVD-2015-7787
Malware in sbrugna...
EUVD-2015-7795
Malware in sbrugna...
CVE-2015-7890
Multiple buffer overflows in the esawrite function in /dev/seirenin the Exynos Seiren Audio driver, as used in Samsung S6 Edge, allow local users to cause a denial of service memory corruption via a large 1 buffer or 2 size parameter...
Buffer overflow
Multiple buffer overflows in the esawrite function in /dev/seirenin the Exynos Seiren Audio driver, as used in Samsung S6 Edge, allow local users to cause a denial of service memory corruption via a large 1 buffer or 2 size parameter...
CVE-2015-7890
Multiple buffer overflows in the esawrite function in /dev/seirenin the Exynos Seiren Audio driver, as used in Samsung S6 Edge, allow local users to cause a denial of service memory corruption via a large 1 buffer or 2 size parameter...
CVE-2015-7890
CVE-2015-7890 affects the Exynos Seiren Audio driver (esignated /dev/seiren) on Samsung Galaxy S6 Edge. The vulnerability is described as multiple buffer overflows in the esa_write function, leading to local memory corruption and potential denial of service; Project Zero notes it can enable kerne...
CVE-2015-7892
Stack-based buffer overflow in the m2m1shotcompatioctl32 function in the Samsung m2m1shot driver framework, as used in Samsung S6 Edge, allows local users to have unspecified impact via a large data.bufout.numplanes value in an ioctl call...
Stack overflow
Stack-based buffer overflow in the m2m1shotcompatioctl32 function in the Samsung m2m1shot driver framework, as used in Samsung S6 Edge, allows local users to have unspecified impact via a large data.bufout.numplanes value in an ioctl call...
CVE-2015-7892
CVE-2015-7892 affects the Samsung m2m1shot driver framework (Samsung Galaxy S6 Edge). A stack-based overflow in the m2m1shot_compat_ioctl32 function allows a local user to trigger an overflow via a large data.buf_out.num_planes in an ioctl. Exploitation was demonstrated publicly (see exploit-db 3...
CVE-2015-7889
The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICKREPLYBACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain...
Information disclosure
The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICKREPLYBACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain...
CVE-2015-7889
The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICKREPLYBACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain...
CVE-2015-7889
CVE-2015-7889 affects the Samsung SecEmailComposer/EmailComposer on Galaxy S6 Edge prior to the October 2015 maintenance release. The vulnerability arises from weak permissions on the com.samsung.android.email.intent.action.QUICK_REPLY_BACKGROUND service, allowing an unprivileged app with knowled...
Directory traversal
Directory traversal vulnerability in the WifiHs20UtilityService on the Samsung S6 Edge LRX22G.G925VVRU1AOE2 allows remote attackers to overwrite or create arbitrary files as the system-level user via a .. dot dot in the name of a file, compressed into a zipped file named cred.zip, and downloaded ...
CVE-2015-7888
Directory traversal vulnerability in the WifiHs20UtilityService on the Samsung S6 Edge LRX22G.G925VVRU1AOE2 allows remote attackers to overwrite or create arbitrary files as the system-level user via a .. dot dot in the name of a file, compressed into a zipped file named cred.zip, and downloaded ...
CVE-2015-7888
CVE-2015-7888 affects Samsung Galaxy S6 Edge WifiHs20UtilityService. A directory traversal occurs when a cred.zip is placed under /sdcard/Download; the unzipping process can write files to arbitrary locations (e.g., /data/bundle) as the system user due to unverified file paths. Project Zero notes...
CVE-2015-7888
Directory traversal vulnerability in the WifiHs20UtilityService on the Samsung S6 Edge LRX22G.G925VVRU1AOE2 allows remote attackers to overwrite or create arbitrary files as the system-level user via a .. dot dot in the name of a file, compressed into a zipped file named cred.zip, and downloaded ...