Title: Samsung Galaxy S3 Near Field Communication (NFC) Memory Corruption
Sep 19, 2012
Samsung Galaxy S2 and Galaxy S3 phones contain a flaw in the Near Field Communication (NFC) functionality. When a malicious user's phone is within close proximity, almost touching the victim's phone, a crafted application can push a second malicious application to the other device. While this functionality is designed to share images, the Galaxy phones will take executables as well. Once the malicious application is pushed, it will be executed immediately without user interaction. This will grant the attacker user level privileges.
Physical Access Required,
Mobile Phone / Hand-held Device
Loss of Integrity
OSVDB is not aware of a solution for this vulnerability.