PT-2016-2941 · Samsung+1 · Telecom+1

Published

2016-12-16

Updated

2016-12-22

CVE-2016-9967

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Samsung Note devices with Android L (5.0/5.1) through Android N (7.0)

Description The issue is related to a lack of proper exception handling in some receivers of the Telecom application on Samsung devices. This can be exploited by attackers to crash the system, potentially leading to a Denial of Service (DoS) attack, or possibly gain elevated privileges.

Recommendations For Android L (5.0/5.1) through Android N (7.0), at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-388

Related Identifiers

BDU:2016-02372

CVE-2016-9967

Affected Products

Android

Telecom

PT-2016-2941 · Samsung+1 · Telecom+1

CVE-2016-9967

Weakness Enumeration

Related Identifiers

Affected Products

References · 5