Release date:
Updated on:
Affected Systems:
Samsung SamsungDive for Android
Description:
--------------------------------------------------------------------------------
Bugtraq id: 57127
CVE (CAN) ID: CVE-2012-6334
SamsungDive is a software that remotely tracks and controls Samsung Android devices.
The Track My Mobile feature of the Samsung Galaxy SamsungDive for Android sub-system does not properly implement the Location API. Physical attackers can provide arbitrary Location data to SamsungDive through the general GPS Location spoofing program.
<* Source: Jiten Jain
Link: http://web.nvd.nist.gov/view/vuln/detail? VulnId = CVE-2012-6334
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Samsung
-------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.samsung.com/