An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. Attackers (who control a certain subdomain) can discover a user's credentials, during an email account login, via an EAS autodiscover packet. The Samsung ID is SVE-2016-7654 (January 2017).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android 4.4 |
||
google android 5.0 |
||
google android 5.1 |
||
google android 6.0 |
||
google android 7.0 |