Remote Controls Vulnerability in Samsung Mobile Devices
CVE-2014-8346

Currently unrated

Key Information:

Vendor: Samsung
Status: Findmymobile; Mobile
Vendor: CVE Published:; 24 October 2014

Summary

The Remote Controls feature on Samsung mobile devices lacks proper validation of the source for lock-code data obtained over a network. This oversight can be exploited by remote attackers to initiate a denial of service, which leads to unintended screen locking when an arbitrary code is sent. The vulnerability arises particularly during unexpected network traffic directed at the Find My Mobile service, allowing malicious actors to disrupt device functionality without direct access.

References

https://www.youtube.com/watch?v=Q3adkpOEjyI

x_refsource_MISC

https://www.youtube.com/watch?v=YufuOYQoDOY

x_refsource_MISC

Timeline

Vulnerability published
Oct 24, 2014
Vulnerability Reserved
Oct 20, 2014