5 matches found
Code injection
SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript...
CVE-2015-7893
SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript...
CVE-2015-7893
CVE-2015-7893 – Samsung SecEmailUI script injection : The Samsung Galaxy S6 email client’s SecEmailUI does not sanitize HTML content in emails, allowing a remote attacker to execute arbitrary JavaScript via a crafted message. The vulnerability affects the email viewer/editor component and could e...
CVE-2015-7893
SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript...
Vulnerability in Samsung SecEmailUI
Samsung SecEmailUI is a set of apk for email reader for email client from Samsung South Korea. A security vulnerability exists in Samsung SecEmailUI. The vulnerability can be exploited by an attacker to execute arbitrary JavaScript code by tricking a user into viewing an email with HTML code tags...