CVE-2014-0997 Information

Feb 14, 2021 cve

Description

WiFiMonitor in Android 4.4.4 as used in the Nexus 5 and 4 Android 4.2.2 as used in the LG D806 Android 4.2.2 as used in the Samsung SM-T310 Android 4.1.2 as used in the Motorola RAZR HD and potentially other unspecified Android releases before 5.0.1 and 5.0.2 does not properly handle exceptions which allows remote attackers to cause a denial of service (reboot) via a crafted 802.11 probe response frame.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

http://packetstormsecurity.com/files/130107/Android-WiFi-Direct-Denial-Of-Service.html http://seclists.org/fulldisclosure/2015/Jan/104 http://www.securityfocus.com/archive/1/534544/100/0/threaded http://www.securityfocus.com/bid/72311 https://www.coresecurity.com/advisories/android-wifi-direct-denial-service https://www.exploit-db.com/exploits/35913/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5

Share on: