- EPSS 89.78%
- Veröffentlicht 01.10.2015 00:59:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Off-by-one error in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow and memory corruption)...
- EPSS 85.38%
- Veröffentlicht 01.10.2015 00:59:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark (BOM), which allows remote attackers to execute arbi...
CVE-2015-3827
- EPSS 81.14%
- Veröffentlicht 01.10.2015 00:59:11
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not validate the relationship between chunk sizes and skip sizes, which allows remote attackers to execute arbitrary code or cause a d...
- EPSS 73.57%
- Veröffentlicht 01.10.2015 00:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark (BOM), which allows remote attackers to cause a deni...
- EPSS 90.48%
- Veröffentlicht 01.10.2015 00:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not properly restrict size addition, which allows remote attackers to execute arbitrary code or cause a denial of service (integer ove...
CVE-2015-1541
- EPSS 0.48%
- Veröffentlicht 01.10.2015 00:59:08
- Zuletzt bearbeitet 06.05.2026 22:30:45
The AppWidgetServiceImpl implementation in com/android/server/appwidget/AppWidgetServiceImpl.java in the Settings application in Android before 5.1.1 LMY48I allows attackers to obtain a URI permission via an application that sends an Intent with a (1...
- EPSS 85.79%
- Veröffentlicht 01.10.2015 00:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CV...
- EPSS 99.06%
- Veröffentlicht 01.10.2015 00:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the SampleTable::setSampleToChunkParams function in SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code via crafted atoms in MP4 data that trigger an unchecked multipl...
CVE-2015-1536
- EPSS 0.67%
- Veröffentlicht 01.10.2015 00:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the Bitmap_createFromParcel function in core/jni/android/graphics/Bitmap.cpp in Android before 5.1.1 LMY48I allows attackers to cause a denial of service (system_server crash) or obtain sensitive system_server memory-content infor...
CVE-2015-1528
- EPSS 2.74%
- Veröffentlicht 01.10.2015 00:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the native_handle_create function in libcutils/native_handle.c in Android before 5.1.1 LMY48M allows attackers to obtain a different application's privileges or cause a denial of service (Binder heap memory corruption) via a craft...