Computer Security
[EN] securityvulns.ru no-pyccku


Samsung Kies Air security vulnerabilities
Published:18.11.2012
Source:
SecurityVulns ID:12720
Type:client
Threat Level:
5/10
Description:DoS, authentication bypass.
Affected:SAMSUNG : Kies Air 2.1
CVE:CVE-2012-5859 (Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote attackers to cause a denial of service (crash) via a crafted request to www/apps/KiesAir/jws/ssd.php.)
 CVE-2012-5858 (Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP address for authentication, which allows remote man-in-the-middle attackers to read arbitrary phone contents by spoofing or controlling the IP address.)
Original documentdocumentcjlacayo_(at)_gmail.com, [CVE-2012-5858] [CVE-2012-5859] DoS/Authorization Bypass - Kies Air (18.11.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod