infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix up KNOX caps, descriptive description

bug/bundler_fix
Tod Beardsley 2014-11-17 13:29:00 -06:00
parent 0f41bdc8b8
commit 39980c7e87
No known key found for this signature in database
GPG Key ID: BD63D0A3EA19CAAC
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
modules/exploits/android/browser/samsung_knox_smdm_url.rb
View File

@ -16,11 +16,12 @@ class Metasploit3 < Msf::Exploit::Remote
def initialize(info = {}) def initialize(info = {})
super(update_info(info, super(update_info(info,
'Name' => 'Samsung Galaxy Knox Android Browser RCE', 'Name' => 'Samsung Galaxy KNOX Android Browser RCE',
'Description' => %q{ 'Description' => %q{
A vulnerability exists in the Knox security component of the Samsung Galaxy A vulnerability exists in the KNOX security component of the Samsung Galaxy
firmware that allows a remote webpage to install an APK with arbitrary firmware that allows a remote webpage to install an APK with arbitrary
permissions. permissions by abusing the 'smdm://' protocol handler registered by the KNOX
component.
The vulnerability has been confirmed in the Samsung Galaxy S4, S5, Note 3, The vulnerability has been confirmed in the Samsung Galaxy S4, S5, Note 3,
and Ace 4. and Ace 4.