CVE-2025-48609

In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not...

CVE-2025-48609

In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not...

CVE-2025-48609

In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not...

CVE-2025-48609

In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not...

CVE-2025-48609

CVE-2025-48609 is not described in the initial CVE entry. Connected PT-Security documents show it is among patches in Samsung/Google January 2026 Maintenance Release (SMR Jan-2026), indicating it was addressed in the patch packages. No concrete technical details (root cause, affected component/ve...

SUSE CVE-2025-51602

mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server...

CVE-2025-51602

mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server...

CVE-2025-51602

CVE-2025-51602 affects VideoLAN VLC media player prior to 3.0.22. The vulnerability is an out-of-bounds read in mmstu.c that can lead to a denial of service when processing a crafted 0x01 response from an MMS server. Exploitation details are not provided beyond the MMS-triggered read/DoS describe...

CVE-2024-20118

In mms, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09062392; Issue ID: MSV-1621...

USN-7243-1 vlc vulnerability

It was discovered that VLC incorrectly handled memory when reading an MMS stream. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

The vulnerability of the MMS multimedia library protocol in FFmpeg, related to reading data beyond the buffer’s allowed limits, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the MMS protocol in the FFmpeg multimedia library relates to reading data beyond the allowed buffer limits. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...

The vulnerability of the MMS processor in the VideoLAN VLC media player software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the MMS processor in the VideoLAN VLC media player lies in the possibility of buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of the protected information by downloading specially...

CVE-2023-3769

Incorrect data input validation vulnerability, which could allow an attacker with access to the network to implement fuzzing techniques that would allow him to gain knowledge about specially crafted packets that would create a DoS condition through the MMS protocol when initiating communication,...

Ingeteam Ingepac Da Au Input Validation Error Vulnerability

Ingeteam Ingepac Da Au is an affordable solution from Ingeteam. for complete measurement and detection of fault bypasses anywhere in the grid. Ingeteam Ingepac Da Au has an input validation error vulnerability that stems from the presence of an incorrect data input validation vulnerability that...

SUSE CVE-2007-3392

Wireshark before 0.99.6 allows remote attackers to cause a denial of service via malformed 1 SSL or 2 MMS packets that trigger an infinite loop...

Libiec_Iccp_Mod 缓冲区错误漏洞

LibiecIccpMod is used to modify Libiec6850 Mms to use the Iccp client. A buffer error vulnerability exists in LibiecIccpMod v1.5, which stems from the software containing a heap buffer overflow component, MMSclientexample1.c. The vulnerability is caused by the following...

Google Android SMS and MMS Message Tampering Vulnerability

Google Android is an open source operating system based on Linux, mainly used in portable devices. A security vulnerability exists in Google Android, which allows malicious applications to exploit the vulnerability to tamper with the sending and receiving status of SMS and MMS messages to carry o...

UBUNTU-CVE-2014-2892

Heap-based buffer overflow in the getanswer function in mmsh.c in libmms before 0.6.4 allows remote attackers to execute arbitrary code via a long line in an MMS over HTTP MMSH server response...

WireShark MMS Remote Denial of Service vulnerability

Title ===== WireShark MMS Remote Denial of Service vulnerability Date ==== 13 August 2007 Affected Software ================= WireShark 0.99.6 Maybe all version of Ethereal Overview ======== MMS message parse flaw in WireShark implementation may allow a remote attacker to crash it causing denial ...

CVE-2006-4131

Multiple buffer overflows in ArcSoft MMS Composer 1.5.5.6, and possibly earlier, and 2.0.0.13, and possibly earlier, allow remote attackers to cause a denial of service crash or execute arbitrary code via crafted MMS Multimedia Messaging Service messages that trigger the overflows in the 1...