CVE-2015-1538 PoC — Android Stagefright 数字错误漏洞

Source

Associated Vulnerability

Title:Android Stagefright 数字错误漏洞 (CVE-2015-1538)
Description:Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。libstagefright是其中的一个硬解码支持库。 Android 5.1及之前版本的libstagefright中的‘SampleTable::setSampleToChunkParams’函数中存在整数溢出漏洞。远程攻击者可借助MP4数据中特制的元素，触发未经检查的乘法运算利用该漏洞执行任意代码。

Description

An exploit for CVE-2015-1538-1 - Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!