Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate VPX output buffer sizes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27597103.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android Mediaserver 提权漏洞
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Mediaserver是其中的一个多媒体服务组件。 Android的Mediaserver中的libstagefright中的codecs/on2/dec/SoftVPX.cpp文件存在提权漏洞,该漏洞源于程序没有验证VPX输出缓冲区大小。本地攻击者可借助恶意的应用程序利用该漏洞获取权限。以下版本受到影响:Android 4.4.4之前版本,5.0.2之前版本,5.1.1之前版本,6
CVSS Information
N/A
Vulnerability Type
N/A