Lucene search
K

6 matches found

NVD
NVD
added 2015/10/01 12:59 a.m.27 views

CVE-2015-1539

Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493...

10CVSS9.5AI score0.85792EPSS
Exploits0References6
CVE
CVE
added 2015/10/01 12:0 a.m.61 views

CVE-2015-1539

The CVE-2015-1539 issue is a remote-code-execution vulnerability in Android’s libstagefright, caused by integer underflows in ESDS::parseESDescriptor during MP4 atom processing. It affects Android releases prior to 5.1.1 LMY48I; the Android bulletins (e.g., Nexus/Android security bulletin) note t...

10CVSS7.6AI score0.85792EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2015/08/16 1:59 a.m.24 views

Heap overflow

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to...

9.3CVSS8.5AI score0.85792EPSS
Exploits0References15Affected Software5
CVE
CVE
added 2015/08/16 1:0 a.m.106 views

CVE-2015-4493

CVE-2015-4493 describes a heap-based buffer overflow in libstagefright’s stagefright::ESDS::parseESDescriptor within Firefox before 40.0 and Firefox ESR 38.x before 38.2, exploitable via an invalid size in an esds chunk of MPEG-4 video data that could allow remote code execution. Connected CVE-20...

9.3CVSS9.7AI score0.07357EPSS
Exploits0References15Affected Software1
Check Point Advisories
Check Point Advisories
added 2015/08/12 12:0 a.m.13 views

Google Android Stagefright MP4 Multiple Atoms Integer Underflow (CVE-2015-1539; CVE-2015-3827)

A remote code execution vulnerability, known as Stagefright Vulnerability, has been reported in Android devices core. The vulnerability is due to an integer underflow condition in multiple MP4 atoms. Successful exploitation would allow an attacker to execute arbitrary code on the target system...

10CVSS4AI score0.85792EPSS
Exploits0
android
android
added 2015/08/01 12:0 a.m.30 views

CVE-2015-1539

Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493...

10CVSS7.8AI score0.85792EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder