CVE-2015-3868

Loading...

General

Score:10.0/10.0
Severity:High
Category:Buffer Error

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 06/10/15 - Updated on 07/12/16

Description

libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23270724.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2015-3868
Agence Nationale de la Sécurité des Systèmes d'Information CERTFR-2015-AVI-418

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
googleandroid

Share this vulnerability with:

Twitter Facebook LinkedIn Mail