DoS Vulnerability in Huawei Smart Phones: System Information (SI) Message DoS

DoS Vulnerability in Huawei Smart Phones: System Information (SI) Message DoS

CVE-2017-17159 · MEDIUM Severity

AV:A/AC:L/AU:N/C:N/I:N/A:C

Some Huawei smart phones with software of NXT-AL10C00B386, NXT-CL00C92B386, NXT-DL00C17B386, NXT-TL00C01B386SP01, NTS-AL00C00B535 have a DoS vulnerability due to insufficient input validation. An unauthenticated attacker could send malformed System Information(SI) messages to the smart phone within radio range by special wireless device. Successful exploit could make the smart phone restart.

Learn more about our Wireless Penetration Test.