Lucene search
K

10 matches found

Openbugbounty
Openbugbounty
added 2023/06/10 2:2 p.m.16 views

web.ff.cuni.cz Cross Site Scripting vulnerability OBB-3407212

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/09/27 12:0 a.m.698 views

Google Android 5.0 < 5.1.1 - 'Stagefright' .MP4 tx3g Integer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Android Stagefright MP4 tx3g Integer Overflow", 'Description' = %q This module exploits a integer overflow vulnerability in the...

10CVSS7.4AI score0.87125EPSS
Exploits6
Packet Storm
Packet Storm
added 2016/09/27 12:0 a.m.118 views

Android Stagefright MP4 tx3g Integer Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Android Stagefright MP4 tx3g Integer Overflow", 'Description' = %q This module exploits a integer overflow vulnerability in the...

10CVSS1AI score0.87125EPSS
Exploits6
NVD
NVD
added 2015/10/01 12:59 a.m.20 views

CVE-2015-3864

Integer underflow in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in mediaserver in Android before 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted MPEG-4 data, aka internal bug 23034759. NOTE: this vulnerability exists because of an...

10CVSS7.7AI score0.87125EPSS
Exploits6References8
UbuntuCve
UbuntuCve
added 2015/10/01 12:59 a.m.37 views

CVE-2015-3864

Integer underflow in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in mediaserver in Android before 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted MPEG-4 data, aka internal bug 23034759. NOTE: this vulnerability exists because of an...

10CVSS6.4AI score0.87125EPSS
Exploits6References3
CVE
CVE
added 2015/10/01 12:0 a.m.129 views

CVE-2015-3864

CVE-2015-3864 is a remote-code-execution vulnerability in Android’s mediaserver (libstagefright). It arises from an integer underflow when parsing the MPEG-4 tx3g chunk in the Stagefright parser, enabling crafted MPEG-4 data to corrupt memory. The issue is tied to an incomplete fix for CVE-2015-3...

10CVSS7.8AI score0.87125EPSS
Exploits6References8Affected Software1
Circl
Circl
added 2015/09/17 12:0 a.m.32 views

CVE-2015-3864

creationtimestamp| type| source ---|---|--- 2015-09-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38226 2016-09-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40436 2016-09-27 19:42:42+00:00| published-proof-of-concept| https://t.me/canyoupwnme/91 2018-05-29...

10CVSS5.3AI score0.87125EPSS
Exploits6References4
GoogleProjectZero
GoogleProjectZero
added 2015/09/16 12:0 a.m.37 views

Stagefrightened?

Posted by Mark Brand, Bypasser of Mitigations There’s been a lot of attention recently around a number of vulnerabilities in Android’s libstagefright. There’s been a lot of confusion about the remote exploitability of the issues, especially on modern devices. In this blog post we will demonstrate...

10CVSS6.8AI score0.87125EPSS
Exploits6
Android Security Bulletins
Android Security Bulletins
added 2015/09/09 12:0 a.m.69 views

Nexus Security Bulletin - September 2015Stay organized with collectionsSave and categorize content based on your preferences.

We have released a security update to Nexus devices through an over-the-air OTA update as part of our Android Security Bulletin Monthly Release process Build LMY48M. The updates for Nexus devices and source code patches for these issues have also been released to the Android Open Source Project...

10CVSS8.2AI score0.87125EPSS
Exploits7
The Hacker News
The Hacker News
added 2015/08/14 12:45 a.m.78 views

Incomplete 'Stagefright' Security Patch Leaves Android Vulnerable to Text Hack

Wanna hack someone's Android smartphone by sending just an MMS message? Yes, you can, because Google's patch for the Stagefright vulnerability in hundreds of Millions of Android devices is BUGGY. Last week, Google issued an official patch for Stagefright vulnerability that affects 95 percent of...

10CVSS6.7AI score0.90483EPSS
Exploits6
Rows per page
Query Builder