A now-patched safety flaw has been disclosed within the Galaxy Retailer app for Samsung units that might doubtlessly set off distant command execution on affected telephones.
The vulnerability, which impacts Galaxy Retailer model 4.5.32.4, pertains to a cross-site scripting (XSS) bug that happens when dealing with sure deep hyperlinks. An unbiased safety researcher has been credited with reporting the problem.
“Right here, by not checking the deep hyperlink securely, when a person accesses a hyperlink from a web site containing the deeplink, the attacker can execute JS code within the webview context of the Galaxy Retailer software,” SSD Safe Disclosure mentioned in an advisory posted final week.
XSS assaults permit an adversary to inject and execute malicious JavaScript code when visiting a web site from a browser or one other software.
The difficulty recognized within the Galaxy Retailer app has to do with how deep hyperlinks are configured for Samsung’s Advertising & Content material Service (MCS), doubtlessly resulting in a situation the place arbitrary code injected into the MCS web site may result in its execution.
This might then be leveraged to obtain and set up malware-laced apps on the Samsung system when visiting the hyperlink.
“To have the ability to efficiently exploit the sufferer’s server, it’s essential to have HTTPS and CORS bypass of chrome,” the researchers famous.
