Out-of-bounds Write Vulnerability in Qualcomm Snapdragon Mobile Devices

Out-of-bounds Write Vulnerability in Qualcomm Snapdragon Mobile Devices

CVE-2016-10479 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9607, MDM9615, MDM9635M, MDM9640, SD 210/SD 212/SD 205, SD 400, SD 600, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 810, and SD 820, an arbitrary length value from an incoming message to QMI Proxy can lead to an out-of-bounds write in the stack variable message.

Learn more about our Cis Benchmark Audit For Google Android.