A critical vulnerability has been discovered inside the browser app comes pre-installed on hundreds of millions of Samsung Android devices of which could allow an attacker to steal data coming from browser tabs if the user visits an attacker-controlled site.
Identified as CVE-2017-17692, the vulnerability can be Same Origin Policy (SOP) bypass issue of which resides inside the common Samsung Internet Browser variation 5.4.02.3 in addition to also earlier.
The Same Origin Policy or SOP can be a security feature applied in modern browsers of which can be designed to make the item possible for web pages coming from the same website to interact while preventing unrelated sites coming from interfering with each different.
The SOP bypass vulnerability inside the Samsung Internet Browser, discovered by Dhiraj Mishra, could allow a malicious website to steal data, such as passwords or cookies, coming from the sites opened by the victim in different tabs.
Attackers can even snag a copy of your session cookie or hijack your session in addition to also read in addition to also write webmail on your behalf.
Mishra reported the vulnerability to Samsung, in addition to also the company replied of which “the patch can be already preloaded in our upcoming style Galaxy Note 8, in addition to also the application will be updated via Apps store update in October.“
Meanwhile, Mishra, with the help of Tod Beardsley in addition to also Jeffrey Martin coming from Rapid7 team, also released an exploit for Metasploit Framework.
Rapid7 researchers have also published a video demonstrating the attack.
Since the Metasploit exploit code for the SOP bypass vulnerability inside the Samsung Internet Browser can be right now publicly available, anyone with less technical knowledge can use in addition to also exploit the flaw on a large number of Samsung devices, most of which are still using the old Android Stock browser.