Security Advisory- Local Denial of Service Vulnerability in Huawei Ascend P7

A third party can exploit this vulnerability to repeatedly send the specific broadcast messages or enable some interface to crash the phone process, making such functions as calling unavailable.

The vulnerability classification has been performed by using the CVSSv2 scoring system (http://www.first.org/cvss/).

Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)

Temporal Score: 4.5 (E:F/RL:O/RC:C)

This vulnerability can be exploited only when the following conditions are present:

1.  Sends broadcast packets.

2.  Enables some interface.

Vulnerability details:

In normal cases, the specific broadcast messages can be sent only by the phone and SMS modules and carry extra information required by the receivers. However, no permission-based protection is implemented on this component. Any application can send broadcast to these receivers. If the broadcast messages do not carry extra information, and the phone process is crashing at the receiver side.

The phone module have some interface, it is invisible to users. Therefore, users can normally use their phones. However, it is visible to external apps. Any app can enable this interface. When an external app enables this interface, an execution error occurs, and the phone process crashes.

This vulnerability is disclosed by wooyun website. The link is:

http://www.wooyun.org/bugs/wooyun-2014-087893

For security problems about Huawei products and solutions, please contactPSIRT@huawei.com.

For general problems about Huawei products and solutions, please directly contact Huawei TAC (Huawei Technical Assistance Center) to request the configuration or technical assistance.

2015-03-20 V1.1 UPDATED Add the CVE ID for the vulnerability

2015-02-11 V1.0 INITIAL

None