Android Wi-Fi Direct DoS vulnerability discovered
Some Android devices are affected by a Denial of Service attack when scanning for WiFi Direct devices, according to Andres Blanco from the CoreLabs Team.
An attacker could send a specially crafted 802.11 Probe Response frame causing the Dalvik subsystem to reboot because of an Unhandle Exception on WiFiMonitor class.
The Android security team was informed of the vulnerability in late September 2014.
Vulnerable packages:
- Nexus 5 – Android 4.4.4
- Nexus 4 – Android 4.4.4
- LG D806 – Android 4.2.2
- Samsung SM-T310 – Android 4.2.2
- Motorola RAZR HD – Android 4.1.2.
Other devices could be also affected.
Non-vulnerable packages include Android 5.0.1 and 5.0.2. More details here.