5 matches found
Information disclosure
The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICKREPLYBACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain...
CVE-2015-7889
The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICKREPLYBACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain...
Samsung SecEmailComposer Elevation of Privilege Vulnerability
Samsung SecEmailComposer is a set of opinion handlers for email clients. A security vulnerability exists in Samsung SecEmailComposer, which can be exploited by a local attacker to elevate privileges...
Samsung - SecEmailComposer QUICK_REPLY_BACKGROUND Permissions
Samsung - SecEmailComposer QUICKREPLYBACKGROUND Permissions Source: https://code.google.com/p/google-security-research/issues/detail?id=490 The SecEmailComposer/EmailComposer application used by the Samsung S6 Edge has an exported service action to do quick replies to emails. It was found that th...
Samsung - SecEmailComposer QUICK_REPLY_BACKGROUND Permissions
Source: https://code.google.com/p/google-security-research/issues/detail?id=490 The SecEmailComposer/EmailComposer application used by the Samsung S6 Edge has an exported service action to do quick replies to emails. It was found that this action required no permissions to call, and could lead to...