Denial of service in Google Android - CVE-2016-3925
Published: October 5, 2016
Vulnerability identifier: #VU757
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-3925
CWE-ID: CWE-20
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Google
Affected software:
Google Android
Google Android
Detailed vulnerability description
The vulnerability allows a remote user to trigger temporary DoS conditions on the target system.
The vulnerability exists due to improper validation of user-supplied input. By tricking the victim to follow a malicious link or open a malicious file attackers can prevent Wi-Fi calling that leeads to denial of the service.
Successful exploitation of the vulnerability will result in temporary denial of service on the vulnerable system.
The vulnerability exists due to improper validation of user-supplied input. By tricking the victim to follow a malicious link or open a malicious file attackers can prevent Wi-Fi calling that leeads to denial of the service.
Successful exploitation of the vulnerability will result in temporary denial of service on the vulnerable system.
How to mitigate CVE-2016-3925
Update to version 7.1.