CVE-2016-0801

Description

The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control message packets, aka internal bug 25662029.

CVSS Metrics

• v3.0•CRITICAL•Score: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
• v2.0•HIGH•Score: 8.3AV:A/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 47.54%• Percentile: 98%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Affected Systems

• apple•iphone_os

  ≤ 9.2.1

• apple•mac_os_x

  ≤ 10.11.3

• apple•tvos

  ≤ 9.1

• apple•watchos

  ≤ 2.1

• google•android

  4.4.4 | 5.0 | 5.1.1 | 6.0 | 6.0.1

References (13)

• http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
• https://support.apple.com/HT206167
• https://support.apple.com/HT206168
• https://www.exploit-db.com/exploits/39801/
• http://www.securitytracker.com/id/1035353
• http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html
• http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html
• https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html
• http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html
• http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2016-004.txt
• https://support.apple.com/HT206169
• https://support.apple.com/HT206166
• http://source.android.com/security/bulletin/2016-02-01.html