CVE-2016-3744

Loading...

General

Score:4.3/10.0
Severity:Low
Category:Buffer Error

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Adjacent Network
Access Complexity:High
Authentication:None

Published on 11/07/16 - Updated on 11/07/16

Description

Buffer overflow in the create_pbuf function in btif/src/btif_hh.c in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows remote attackers to gain privileges via a crafted pairing operation, aka internal bug 27930580.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2016-3744
Agence Nationale de la Sécurité des Systèmes d'Information CERTFR-2016-AVI-227

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
googleandroid

Share this vulnerability with:

Twitter Facebook LinkedIn Mail