CVE-2015-1538

🗓️ 01 Oct 2015 00:59:06Reported by [email protected]Type

Integer overflow in SampleTable::setSampleToChunkParams function in libstagefright in Android before 5.1.1 LMY48I allows remote code execution via crafted MP4 atoms, related to CVE-2015-4496

Reporter	Title	Published	Views	Family All 25
0day.today	Android Stagefright - Remote Code Execution Exploit	9 Sep 201500:00	–	zdt
Android Security Bulletins	Nexus Security Bulletin—August 2015Stay organized with collectionsSave and categorize content based on your preferences.	13 Aug 201500:00	–	androidsecurity
android	CVE-2015-1538	1 Aug 201500:00	–	android
android	Stagefright	21 Jul 201500:00	–	android
BDU FSTEC	The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code	13 Oct 201500:00	–	bdu_fstec
Gitee	Exploit for CVE-2015-1538	11 Sep 202015:08	–	gitee
Circl	CVE-2015-1538	9 Sep 201500:00	–	circl
CNVD	Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05024)	29 Jul 201500:00	–	cnvd
Check Point Advisories	Google Android Stagefright MP4 Multiple Atoms Integer Overflow (CVE-2015-1538; CVE-2015-3824; CVE-2015-3829; CVE-2015-3864)	12 Aug 201500:00	–	checkpoint_advisories
CVE	CVE-2015-1538	1 Oct 201500:00	–	cve

NVD

Node

google androidRange≤5.1

Source	Link
exploit-db	www.exploit-db.com/exploits/38124/
huawei	www.huawei.com/en/psirt/security-advisories/hw-448928
packetstormsecurity	www.packetstormsecurity.com/files/134131/Libstagefright-Integer-Overflow-Check-Bypass.html
securitytracker	www.securitytracker.com/id/1033094
android	www.android.googlesource.com/platform/frameworks/av/+/2434839bbd168469f80dd9a22f1328bc81046398
groups	www.groups.google.com/forum/message/raw
securityfocus	www.securityfocus.com/bid/76052
www1	www.www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm