CVE-2016-7990

Integer overflow in libomacp.so

Publish date

August 2016

Identifier

CVE-2016-7990

Manufacturer

Samsung

Product

Android

Patched

http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016

Authors

Tom Court

Description

On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-2016-6542.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7990

 

CREST
CREST STAR
CHECK IT Health Check Service
CBEST
Cyber Essentials
CESG Certified Service
First - Improving Security Together
BSI ISO 9001 FS 581360
BSI ISO 27001 IS 553326
PCI - Approved Scanning Vendor
NCSC CCSC - Assured Service Provider