14 matches found
MiracleLinux 4 : firefox-38.2.0-4.0.1.AXS4 (AXSA:2015-442:07)
The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2015-442:07 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. With this update, following issues are...
Exploit for Path Traversal in Thecartpress Thecartpress_Ecommerce_Shopping_Cart
This is a PoC exploit for CVE-2015-3301, a vulnerability in the Stagefright media library that allows for remote code execution on Android devices. The exploit, called Metaphor, is designed to bypass Address Space Layout Randomization ASLR and execute arbitrary code on the device. The exploit...
Android Media framework libstagefright Information Disclosure Vulnerability
Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA, with the Media framework libstagefright being one of the hard-decoding support frameworks for multimedia...
Google Android Media Framework Remote Code Execution Vulnerability (CNVD-2017-31362)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and Media framework libstagefright is one of the hard-decoding support frameworks for multimedia development. A remote code execution vulnerability exists in Media...
Google Android Media Framework Remote Code Execution Vulnerability (CNVD-2017-31367)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and Media framework libstagefright is a hard-decoding support framework for multimedia development. A remote code execution vulnerability exists in Media frameworklibstagefright in...
UBUNTU-CVE-2016-2495
SampleTable.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to cause a denial of service device hang or reboot via a crafted file, aka internal bug 28076789...
FCC, FTC Investigate Mobile Security Update Practices
The glowing lack of public, real-world Stagefright exploits didn’t stop the U.S. government from using last summer’s blockbuster Android vulnerability as an illustration of the dangers facing mobile device users. Under the context of Stagefright exposing up to 1 billion devices to attack, the...
2015 Google Android Security Report
Last year was a landmark time for Android security. Google dealt with a major vulnerability in Stagefright, launched a monthly patch release and vulnerability rewards program, and continued to chip away at the number of malicious applications that find their way onto devices. Given all of that...
CVE-2015-7717
mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to gain privileges via a crafted application, aka internal bug 19573085, a different vulnerability than CVE-2015-6596...
Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05030)
Stagefright is a media playback service for Android, introduced since version 2.2 Froyo. A remote code execution vulnerability exists in the Google Stagefright Media Playback Engine, which can be exploited by an attacker to execute arbitrary code in the context of an affected device...
Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05029)
Stagefright is a media playback service for Android, introduced since version 2.2 Froyo. A remote code execution vulnerability exists in the Google Stagefright Media Playback Engine, which can be exploited by an attacker to execute arbitrary code in the context of an affected device...
Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05025)
Stagefright is a media playback service for Android, introduced since version 2.2 Froyo. A remote code execution vulnerability exists in the Google Stagefright Media Playback Engine, which can be exploited by an attacker to execute arbitrary code in the context of an affected device...
Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05024)
Stagefright is a media playback service for Android, introduced since version 2.2 Froyo. A remote code execution vulnerability exists in the Google Stagefright Media Playback Engine, which can be exploited by an attacker to execute arbitrary code in the context of an affected device...
Google Stagefright Media Playback Engine Remote Code Execution Vulnerability (CNVD-2015-05028)
Stagefright is a media playback service for Android, introduced since version 2.2 Froyo. A remote code execution vulnerability exists in the Google Stagefright Media Playback Engine, which can be exploited by an attacker to execute arbitrary code in the context of an affected device...