internal/telephony/SMSDispatcher.java in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, 6.x prior to 2016-09-01, and 7.0 prior to 2016-09-01 allows physically proximate malicious users to bypass the Factory Reset Protection protection mechanism, and send premium SMS messages during the Setup Wizard provisioning stage, via unspecified vectors, aka internal bug 29420123.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android 5.1.0 |
||
google android 4.2 |
||
google android 4.1 |
||
google android 6.0.1 |
||
google android 6.0 |
||
google android 4.0.2 |
||
google android 4.4.3 |
||
google android 4.0.4 |
||
google android 4.3 |
||
google android 4.0.1 |
||
google android 7.0 |
||
google android 4.2.1 |
||
google android 5.0.1 |
||
google android 5.0 |
||
google android 4.0.3 |
||
google android 4.0 |
||
google android 4.4 |
||
google android 4.4.1 |
||
google android 4.2.2 |
||
google android 4.3.1 |
||
google android 4.4.2 |
||
google android 5.1 |
||
google android 4.1.2 |