Remote, One-Click, Breaking through Smartphones via a Non Well-Known Remote Attack Surface
Unknown
Black Hat USA 2024 · Day 1 · Briefing
This article delves into a groundbreaking security research presentation that unveiled a critical, previously under-explored attack surface on Android smartphones, specifically targeting Samsung devices. The talk details a series of vulnerabilities within the device's video calling infrastructure, culminating in a **one-click Remote Code Execution (RCE)** exploit. What makes this research particularly significant is its focus on a system-level service, `com.samsung.ims.service`, which operates with high privileges, listens on an open network interface, and is installed by default on millions of Samsung phones.