[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] CVE-2016-6527 Possible Privilege Escalation in telecom of Samsung Mobile Phone

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] CVE-2016-6527 Possible Privilege Escalation in telecom of Samsung Mobile Phone
From: 0xr0ot <0xr0ot.sec@xxxxxxxxx>
Date: Thu, 4 Aug 2016 17:28:27 +0800

Hi,

Description of the potential vulnerability:
Severity: Medium
Affected versions: L(5.0/5.1), M(6.0)
Reported on: May 11, 2016
Disclosure status: Privately disclosed.
The vulnerability in SmartCall Activity components of Telecom application
can make crash and reboot a device when the malformed serializable object
is passed.

Fix:
http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016
SVE-2016-6244: Possible Privilege Escalation in telecom

Sincerely,
Zhaozhanpeng(0xr0ot)

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] CVE-2016-6526 Possible Privilege Escalation in telecom of Samsung Mobile Phone
Next by Date: [FD] K2 (Joomla! Extension) < 2.7.1 - Reflected Cross Site Scripting
Previous by thread: [FD] CVE-2016-6526 Possible Privilege Escalation in telecom of Samsung Mobile Phone
Next by thread: [FD] K2 (Joomla! Extension) < 2.7.1 - Reflected Cross Site Scripting
Index(es):
- Date
- Thread