CVE-2009-2999

Metadata

CVE-2009-2999
4.3
android.git.kernel.org, securitytracker.com, ocert.org, securityfocus.com, exchange.xforce.ibmcloud.com
2009-10-14
2017-08-17 06:09

Description

The com.android.phone process in Android 1.5 CRBxx allows remote attackers to cause a denial of service (application restart and network disconnection) via an SMS message containing a malformed WAP Push message that triggers an ArrayIndexOutOfBoundsException exception, possibly a related issue to CVE-2009-2656.

Related Vulnerabilities