RTP Daemon Crash and VT Call Termination Vulnerability

RTP Daemon Crash and VT Call Termination Vulnerability

CVE-2016-10411 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, and SD 835, RTP daemon crashes and terminates VT call when UE receives RTCP unknown APP packet report which caused the parser to miss an end of RTCP packet length and go on forever looking for it, even going beyond the limits of the RTCP Packet length.

Learn more about our Cis Benchmark Audit For Google Android.