CVE-2019-9832

HIGH

AirDrop < 2.0 - Denial of Service via Socket Connection Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-9832. PoCs published by s4vitar.

AI-analyzed exploit summary This exploit performs a Denial of Service (DoS) attack against AirDrop 2.0 by establishing multiple TCP connections and sending minimal data to overwhelm the target. It uses forked processes to create concurrent connections and maintain them in a loop.

Description

The AirDrop application through 2.0 for Android allows remote attackers to cause a denial of service via a client that makes many socket connections through a configured port.

Exploits (1)

exploitdb WORKING POC

by s4vitar · cdosandroid

https://www.exploit-db.com/exploits/46445

View Code ZIP pw:eip

This exploit performs a Denial of Service (DoS) attack against AirDrop 2.0 by establishing multiple TCP connections and sending minimal data to overwhelm the target. It uses forked processes to create concurrent connections and maintain them in a loop.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: AirDrop 2.0 (Android)

No auth needed

Prerequisites: Target IP address and port · Network connectivity to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/46445

Exploit, Third Party Advisory x_refsource_misc

https://www.youtube.com/watch?v=qwjuY7znZjs

Scores

CVSS v3 7.5

EPSS 0.1797

EPSS Percentile 95.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (1)

airdrop_project/airdrop < 2.0

Published Mar 15, 2019

Tracked Since Feb 18, 2026