First published: Thu Feb 15 2018(Updated: )
Bluetooth module in some Huawei mobile phones with software LON-AL00BC00B229 and earlier versions has a buffer overflow vulnerability. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth AVDTP/AVCTP messages after successful paring, causing buffer overflow. Successful exploit may cause code execution.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Lon-al00b Firmware | <=lon-al00bc00b229 | |
Huawei Lon-al00b |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.