693 B
693 B
CVE-2015-7893
Description
SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attackers to execute arbitrary JavaScript.
POC
Reference
- http://packetstormsecurity.com/files/135643/Samsung-SecEmailUI-Script-Injection.html
- https://www.exploit-db.com/exploits/38554/