{"id":3913,"date":"2014-11-03T19:29:56","date_gmt":"2014-11-03T22:29:56","guid":{"rendered":"https:\/\/www.kwell.net\/kwell_blog\/?p=3913"},"modified":"2014-11-03T19:29:56","modified_gmt":"2014-11-03T22:29:56","slug":"vulnerabilidad-de-samsung","status":"publish","type":"post","link":"https:\/\/www.kwell.net\/kwell_blog\/?p=3913","title":{"rendered":"Vulnerabilidad de Samsung"},"content":{"rendered":"

The National Institute of Standards and Technology (NIST) is warning<\/span><\/strong><\/a> users of a newly discovered Zero-Day flaw in the Samsung Find My Mobile<\/span> service<\/i><\/b>, which fails to validate the sender of a lock-code data received over a network.<\/p>\n

The Find My Mobile feature implemented by Samsung in their devices is a mobile web-service that provides samsung users a bunch of features to locate their lost device, to play an alert on a remote device and to lock remotely the mobile phone so that no one else can get the access to the lost device.<\/div>\n
<\/div>\n
The vulnerability in Samsung\u2019s Find My Mobile feature was discovered by Mohamed Abdelbaset Elnoby (@SymbianSyMoh)<\/i>, an Information Security Evangelist from Egypt. The flaw is a Cross-Site Request Forgery (CSRF) that could allow an attacker to remotely lock or unlock the device and even make the device rings too.<\/div>\n

<\/p>\n

\"Samsung-FindmyMobile\"<\/a><\/div>\n
\u00a0Cross-Site Request Forgery (CSRF or XSRF) is an attack that tricks the victim into loading a page that contains a specially crafted HTML exploit page. Basically, an attacker will use CSRF attack to trick a victim into clicking a URL link that contains malicious or unauthorized requests.<\/div>\n
\n
<\/div>\n
The malicious link have the same privileges as the authorized user to perform an undesired task on the behalf of the victim, like change the victim’s e-mail address, home address, or password, or purchase something. CSRF attack generally targets functions that cause a state change on the server but it can also be used to access victim\u2019s sensitive data.<\/div>\n

“In this way, the attacker can make the victim perform actions that they didn’t intend to, such as logout, purchase item, change account information, retrieve account information, or any other function provided by the vulnerable website<\/i>,” Elnoby said.<\/p><\/blockquote>\n

The researcher has also provided a proof-of-concept (POC) video that will give you a detail explanation on How the researcher made the attack work on Samsung\u2019s Find My Mobile feature.<\/div>\n