virus logo Intrusion Prevention

Samsung.Galaxy.KNOX.Android.Browser.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt against an Elevation of Privilege vulnerability in KNOX security component of the Samsung Galaxy firmware.
The vulnerability is due to a design flaw when the vulnerable module handles a crafted update request. A remote attacker may be able to exploit this to install arbitrary application to execute arbitrary code within the context of the application, via a crafted update request to the vulnerable service.

affected-products-logoAffected Products

Samsung Galaxy S4 version I9505XXUGNH8 or prior
Samsung Galaxy S4 mini version I9190UBUCNG1 or prior
Samsung Galaxy Note 3 version N9005XXUGNG1 or prior
Samsung Galaxy Ace 4 version G357FZXXU1ANHD or prior

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary code in the context of the affected application.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.exploit-db.com/exploits/35282/
ID 39658
Created Dec 30, 2014
Updated Mar 26, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Other
Affected App Other