641 matches found
CVE-2015-6647
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554...
CVE-2015-6639
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875...
PT-2016-1003 · Google · Android +1
Name of the Vulnerable Software and Affected Versions: Android versions 5.x through 5.1.1 before LMY49F Android versions 6.0 before 2016-01-01 Description: The issue is related to insufficient access control in the Widevine QSEE TrustZone application. It allows attackers to gain privileges via a...
CVE-2015-6647
CVE-2015-6647 is a privilege-escalation in the Widevine QSEE TrustZone app on Android. A crafted app exploiting QSEECOM access could grant elevated privileges on devices running Android 5.x before 5.1.1 LMY49F and Android 6.0 before 2016-01-01. Mitigation/fixes are provided by Android patches: An...
PT-2016-1009 · Google · Android +1
Name of the Vulnerable Software and Affected Versions: Android versions 5.x through 5.1.1 before LMY49F Android versions 6.0 before 2016-01-01 Description: The issue is related to insufficient access control in the Widevine QSEE TrustZone application. It allows attackers to gain privileges via a...
CVE-2015-6639
CVE-2015-6639 details: A privilege-escalation in the Widevine QSEE TrustZone app on Android 5.x (before 5.1.1 LMY49F) and 6.0 (before 2016‑01‑01) allows a crafted app with QSEECOM access to gain privileges. Root cause involves trustlet/TrustZone interaction enabling local escalation via the QSEE ...
CVE-2015-6647
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554...
CVE-2015-6639
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875...
Qualcomm TrustZone
An exploit which allows code execution within the TrustZone kernel. This may allow capturing of secret keys, disabling of hardware protection and unlocking locked bootloaders...
Android tremble! Black Hat2015 hacker conference to be announced 6 security a threat-vulnerability warning-the black bar safety net
For phone control and information security of the party, the Black Hat, the world's top hacker conference is certainly not to be missed, each time the General Assembly will burst a lot of interesting things, such as this opening in the United States, held Black Hat 2 0 1 5, the“fresh”security...
Android very hurt: the Black Hat 2 0 1 5 hacker conference will be the announcement of the 6 mobile security threats-vulnerability warning-the black bar safety net
Black Hat 2 0 1 5 held soon, now with the small series together see see next month at Black Hat USA posted some of the Android security threat. 6 4-bit Android Root Recently a lot about the smartphone Root will cause the phone to much more dangerous debate. But we hope that cyber criminals would...
Non-Nexus Devices and the Android Security Rewards Program
Google’s decision to limit its Android Security Rewards program to newer Nexus devices clearly puts the Google phones on the top tier of secure mobile devices. It also could ultimately have the effect of putting non-Nexus devices in the line of fire. For now, limiting the rewards program to Nexus...
Google Launches Android Security Rewards For Nexus Devices
Google today announced that it has expanded the scope of its vulnerability rewards program to include the latest versions of its Nexus mobile devices, dangling thousands of dollars in front of researchers willing to hunt not only for vulnerabilities but also develop bypasses for native Android...
Samsung Galaxy S5 latest vulnerabilities: hackers can steal the user's fingerprint data-vulnerability warning-the black bar safety net
Fireeye(FireEye security researchers at the Samsung Galaxy S5 has discovered a new vulnerability. Although the Galaxy phone the fingerprint is encrypted, but hackers can still clone the phone of the user's fingerprint data, thus reducing the fingerprint image, posing as the victims identity...
Samsung Rebuffs Criticism of Knox Crypto, Password Management
Replies and rebuttals are flying about regarding a report critical of the encryption and password management functions deployed with Samsung’s Knox technology in its Android-based Galaxy and Note mobile devices. Last week, a researcher published an advisory that said a PIN chosen during setup of...
CVE-2013-3051
The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...
Design/Logic Flaw
The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...
CVE-2013-3051
The CVE-2013-3051 issue concerns the TrustZone kernel on certain Motorola builds of Android 4.1.2 (Razr HD, Razr M, Atrix HD with Qualcomm MSM8960). The vulnerability arises because the kernel does not verify the association between a specific physical-address argument and a memory region, enabli...
CVE-2013-3051
The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...
CVE-2013-3051
The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...