CVE-2015-1574 – Google Email 4.4.2.0200 Denial Of Service

https://notcve.org/view.php?id=CVE-2015-1574

The Google Email application 4.2.2.0200 for Android allows remote attackers to cause a denial of service (persistent application crash) via a "Content-Disposition: ;" header in an e-mail message. La aplicación para Android Google Email 4.2.2.0200 permite a atacantes remotos causar una denegación de servicio (caída de aplicación persistente) a través de una cabecera 'Content-Disposition: ;' en un mensaje de email. A bug in the stock Google email application version 4.4.2.0200 has been found. An attacker can remotely perform an denial of service attack by sending a specially crafted email. No interaction from the user is needed to produce the crash just receive the malicious email. • http://hmarco.org/bugs/google_email_app_4.2.2_denial_of_service.html http://openwall.com/lists/oss-security/2015/02/10/9 http://openwall.com/lists/oss-security/2015/02/12/15 http://packetstormsecurity.com/files/130388/Google-Email-4.4.2.0200-Denial-Of-Service.html http://seclists.org/fulldisclosure/2015/Feb/58 http://www.securityfocus.com/archive/1/534703/100/0/threaded • CWE-19: Data Processing Errors •