Samsung Galaxy Retailer Flaw Permits Distant Attacker to Run Code

November 1, 2022

1

A safety flaw within the Galaxy Retailer permits attackers to set off distant code execution on affected smartphones.

The now patched vulnerability, which impacts Galaxy Retailer model 4.5.32.4, pertains to a cross-site scripting (XSS) bug that happens when dealing with sure deep hyperlinks. An unbiased safety researcher has been credited with reporting the problem.

Vulnerability Particulars

The now-patched vulnerability is expounded to a cross-site scripting (XSS) flaw that happens when dealing with particular deep hyperlinks and it impacts Galaxy Retailer model 4.5.32.4. The issue was first reported by an unbiased safety researcher.

Significantly, deeplink may be known as from one other utility or from a browser. The shop receives acceptable deeplinks, it can course of and present them in a webview.

On this case, by failing to safe the deeplink, the attacker is ready to run JS code within the Galaxy Retailer utility’s webview context every time a person hits a hyperlink from a web site that comprises the deeplink.

The professional focuses on deep hyperlinks configured for Samsung’s Advertising and marketing & Content material Service (MCS).

Though the Samsung MCS Direct Web page web site was extracting the argument from the url and displaying it on the web site, it didn’t encrypt, which resulted in an XSS drawback.

“We will see the web site is processing the abc, def parameters and displaying as above with out encoding, the url is handed on to href that is very harmful and can trigger XSS.” reads the advisory printed by SSD Safe Disclosure.

Consultants noticed two capabilities ‘downloadApp’ and ‘openApp’ right here these two capabilities will get the app id and obtain them from the shop or open them.

This means that these two capabilities may be known as utilizing JS code. On this case, an attacker has the power to execute arbitrary code by injecting it into the MCS web site.

“To have the ability to efficiently exploit the sufferer’s server, it’s essential to have HTTPS and CORS bypass of Chrome,” advisory printed by SSD Safe Disclosure

Affected Merchandise and Patch Accessible

The vulnerability impacts Galaxy Retailer model 4.5.32.4.

Subsequently, Samsung has issued patches that are actually in huge circulation for all Samsung gadgets.

Penetration Testing As a Service – Obtain Pink Crew & Blue Crew Workspace

Previous articleEasy methods to achieve entry to the one you love’s on-line accounts after they die

Next articleDisassembling a wi-fi charger with a magnetic persona

Samsung Galaxy Retailer Flaw Permits Distant Attacker to Run Code

Vulnerability Particulars

Affected Merchandise and Patch Accessible

CyberheistNews Vol 12 #44 [INFOGRAPHIC] KnowBe4 Prime-Clicked Phishing E-mail Topics for Q3 2022

Vital RCE Vulnerability Reported in ConnectWise Server Backup Answer

Unofficial Patch Has Been Launched for Actively Exploited Home windows

LEAVE A REPLY Cancel reply

Most Popular

OpenSSL patches are out – CRITICAL bug downgraded to HIGH, however patch anyway! – Bare Safety

Rethinking Refractometers: VST, Atago, and DiFluid; Half 3 | by Robert McKeon Aloe | Nov, 2022

Disassembling a wi-fi charger with a magnetic persona

Easy methods to achieve entry to the one you love’s on-line accounts after they die

Recent Comments

ABOUT US

POPULAR POSTS

OpenSSL patches are out – CRITICAL bug downgraded to HIGH, however patch anyway! – Bare Safety

Rethinking Refractometers: VST, Atago, and DiFluid; Half 3 | by Robert McKeon Aloe | Nov, 2022

Disassembling a wi-fi charger with a magnetic persona

POPULAR CATEGORY