Lucene search
+L

146 matches found

The Hacker News
The Hacker News
added 2015/11/09 5:37 a.m.16 views

1-Click Way to Check If your Android Device is Vulnerable to Hacking

Vulnerabilities are common these days and when we talk about mobile security, this year has been somewhat of a trouble for Android users. Almost every week we come across a new hack affecting Android devices. One of the serious vulnerabilities is the Stagefright Security Bug, where all it needed ...

7.2AI score
Exploits0
NVD
NVD
added 2015/11/03 11:59 a.m.18 views

CVE-2015-6610

libstagefright in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to gain privileges or cause a denial of service memory corruption via a crafted application, aka internal bug 23707088...

10CVSS6.5AI score0.00785EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/11/03 11:59 a.m.30 views

CVE-2015-8073

mediaserver in Android 4.4 and 5.1 before 5.1.1 LMY48X allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 14388161, a different vulnerability than CVE-2015-6608 and CVE-2015-8072...

10CVSS6.2AI score0.0222EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/11/03 11:59 a.m.32 views

CVE-2015-8072

mediaserver in Android 4.4 through 5.x before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 23881715, a different vulnerability than CVE-2015-6608 and CVE-2015-8073...

10CVSS6.2AI score0.0222EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2015/11/03 2:11 a.m.15 views

Backdoor in Baidu Android SDK Puts 100 Million Devices at Risk

The China's Google-like Search Engine Baidu is offering a software development kit SDK that contains functionality that can be abused to give backdoor-like access to a user's device, potentially exposing around 100 Million Android users to malicious hackers. The SDK in question is Moplus, which m...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2015/11/02 3:10 p.m.38 views

November 2015 Android Security Bulletin

The Stagefright vulnerabilities are the gifts that keep on giving. Months after the potentially devastating security flaws in the mobile OS were publicly disclosed, Google continues to send out patches addressing vulnerabilities related to the initial reports. Today’s monthly Android security...

10CVSS0.6AI score0.02574EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2015/10/14 12:0 a.m.11 views

Vulnerabilities of the Android operating system that allow a hacker to execute arbitrary code

The multiple vulnerabilities in the BnHDCP::onTransact function of the libstagefright library in the Android operating system are caused by buffer overflows. Exploiting these vulnerabilities could allow a malicious actor to execute arbitrary code using a specially crafted application...

10CVSS6.3AI score0.01223EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2015/10/14 12:0 a.m.18 views

The vulnerability of the Android operating system, which allows a hacker to execute arbitrary code or cause a service failure

The vulnerability of the MPEG4Extractor::parseChunk function in the libstagefright library of the Android operating system is related to integer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by using specially crafted MPEG-4...

10CVSS6.3AI score0.89782EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2015/10/13 12:0 a.m.8 views

The vulnerability of the Android operating system allows a hacker to execute arbitrary code using specially crafted MP3 or MP4 files.

The vulnerability of the libstagefright library in the Android operating system exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially crafted MP3 or MP4 file headers...

9.3CVSS6.2AI score0.03137EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2015/10/13 12:0 a.m.7 views

Vulnerabilities of the Android operating system that allow a hacker to execute arbitrary code

The multiple vulnerabilities of the ESDS::parseESDescriptor function in the libstagefright library of the Android operating system are related to integer overflow. Exploiting these vulnerabilities could allow a malicious actor to execute arbitrary code using specially crafted ESDS data...

10CVSS6.4AI score0.85792EPSS
Exploits0References3
myhack58
myhack58
added 2015/10/08 12:0 a.m.14 views

Google released Android Stagefright 2.0 vulnerability security patches-bug warning-the black bar safety net

! It was reported that Google fixes Android latest Stagefright 2.0 vulnerabilities, and by OTA to the Nexus devices to push the update. However, Samsung, LG, HTC, and other manufacturers of Android devices need a period of time in order to receive this vulnerability update. Stagefright series...

0.2AI score
Exploits0
myhack58
myhack58
added 2015/10/08 12:0 a.m.12 views

Stagefright 2.0 vulnerability struck by the impact on the billion Android users-vulnerability warning-the black bar safety net

Android users Note:Due to the latest two latest stagefright vulnerability disclosure, estimated at more than 1 0 million Android users of the system will suffer this vulnerability. Yes, that stagefright vulnerability and return! This year 7 month, Zimperium company security researchers...

1.3AI score
Exploits0
UbuntuCve
UbuntuCve
added 2015/10/06 5:59 p.m.34 views

CVE-2015-7717

mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to gain privileges via a crafted application, aka internal bug 19573085, a different vulnerability than CVE-2015-6596...

9.3CVSS5.9AI score0.00618EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2015/10/05 9:51 p.m.10 views

Google releases Security Patch for Android Stagefright 2.0 Vulnerability

Google reportedly fixed the latest round of Stagefright vulnerabilities in Android, pushing its latest over-the-air OTA update to Nexus devices. Last week, researchers warned of Stagefright 2.0 vulnerability that affected more than one Billion Android devices dating back to the latest versions of...

7.7AI score
Exploits0
ThreatPost
ThreatPost
added 2015/10/05 4:34 p.m.12 views

Google Patches Stagefright 2.0 in Android OTA Nexus Update

Google today patched the latest round of Stagefright vulnerabilities in Android, pushing them out as part of its latest over-the-air update to Nexus devices. Stagefright 2.0, as it’s come to be known, affected the Stagefright media playback engine in Android and one billion devices dating back to...

0.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2015/10/02 11:44 a.m.11 views

Mike Mimoso and Chris Brook Discuss Gatekeeper, Stagefright 2.0, the Accidental Windows Update and More

Mike Mimoso and Chris Brook discuss the week in news–the latest Gatekeeper bypass in OS X, Stagefright 2.0, that accidental Windows Update, and Apple’s new privacy initiative. Download: newswrap10-2-15.mp3 Music by Chris Gonsalves...

2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2015/10/01 7:0 a.m.27 views

Android Stagefright 2.0 Vulnerabilities

When researcher Joshua Drake published details in August about critical Android vulnerabilities in the Stagefright media playback engine, he promised there would be more issues that he and others would find and report to Google’s Android security team. Today, Drake, vice president of platform...

9.3CVSS1.2AI score0.03187EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2015/10/01 4:38 a.m.37 views

Stagefright Bug 2.0 — One Billion Android SmartPhones Vulnerable to Hacking

Attention Android users! More than 1 Billion Android devices are vulnerable to hackers once again – Thanks to newly disclosed two new Android Stagefright vulnerabilities. Yes, Android Stagefright bug is Back… …and this time, the flaw allows an attacker to hack Android smartphones just by tricking...

9.3CVSS6.7AI score0.03187EPSS
Exploits0
Prion
Prion
added 2015/10/01 12:59 a.m.29 views

Integer overflow

SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I does not properly consider integer promotion, which allows remote attackers to execute arbitrary code or cause a denial of service integer overflow and memory corruption via crafted atoms in MP4 data, aka internal bug 20139950, a...

10CVSS8.3AI score0.99064EPSS
Exploits6References2Affected Software1
Cvelist
Cvelist
added 2015/10/01 12:0 a.m.24 views

CVE-2015-3826

The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark BOM, which allows remote attackers to cause a denial of service integer underflow, buffer over-read...

6.6AI score0.73566EPSS
Exploits0References6
Rows per page
Query Builder