Lucene search
K

9 matches found

NVD
NVD
added 2016/10/31 10:59 a.m.13 views

CVE-2016-7989

On Samsung Galaxy S4 through S7 devices, a malformed OTA WAP PUSH SMS containing an OMACP message sent remotely triggers an unhandled ArrayIndexOutOfBoundsException in Samsung's implementation of the WifiServiceImpl class within wifi-service.jar. This causes the Android runtime to continually...

7.8CVSS7.2AI score0.00604EPSS
Exploits0References2
NVD
NVD
added 2016/10/31 10:59 a.m.20 views

CVE-2016-7988

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.Samsung.android.intent.action.SETWIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of...

7.8CVSS7.2AI score0.00604EPSS
Exploits0References2
Prion
Prion
added 2016/10/31 10:59 a.m.15 views

Code injection

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.Samsung.android.intent.action.SETWIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of...

7.8CVSS6.8AI score0.00604EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2016/10/31 10:59 a.m.17 views

Design/Logic Flaw

On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores security information embedded in the OMACP messages resulting in remote unsolicited WAP Push SMS messages being accepted, parsed, and handled by the device, leading to unauthorized configuration changes, a subset of SVE-2016-6542...

7.8CVSS6.8AI score0.00492EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2016/10/31 10:59 a.m.15 views

Integer overflow

On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages within WAP Push SMS messages leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-2016-6542...

10CVSS7.9AI score0.0207EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2016/10/31 10:59 a.m.14 views

Design/Logic Flaw

On Samsung Galaxy S4 through S7 devices, a malformed OTA WAP PUSH SMS containing an OMACP message sent remotely triggers an unhandled ArrayIndexOutOfBoundsException in Samsung's implementation of the WifiServiceImpl class within wifi-service.jar. This causes the Android runtime to continually...

7.8CVSS6.8AI score0.00604EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/10/31 10:0 a.m.23 views

CVE-2016-7988

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.Samsung.android.intent.action.SETWIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of...

7.2AI score0.00604EPSS
Exploits0References2
CVE
CVE
added 2016/10/31 10:0 a.m.40 views

CVE-2016-7988

The CVE describes an issue on Samsung Galaxy devices (S4–S7) where the BroadcastReceiver for com.[Samsung].android.intent.action.SET_WIFI lacks required permissions. This permits unsolicited configuration messages to be processed by wifi-service.jar within the Android Framework, as part of the vu...

7.8CVSS7.2AI score0.00604EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/10/31 10:0 a.m.40 views

CVE-2016-7989

CVE-2016-7989 affects Samsung Galaxy S4–S7. A malformed OTA WAP PUSH SMS containing an OMACP message triggers an unhandled ArrayIndexOutOfBoundsException in Samsung’s WifiServiceImpl (wifi-service.jar), causing the Android runtime to crash repeatedly and render the device unusable until a factory...

7.8CVSS7.1AI score0.00604EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder