SSD Advisory – Galaxy Store Applications Installation/Launching without User Interaction
A vulnerability in the Galaxy Store allows attackers through an XSS to cause the store to install and/or launch an application, allowing remote attackers to trigger a remote command execution in the phone.
