Lucene search
HistoryOct 02, 2015 - 2:59 a.m.
CVE-2015-3876
cve-2015-3876
libstagefright
android
remote code execution
mp3
mp4
metadata
vulnerability
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.064 Low
EPSS
Percentile
93.7%
libstagefright in Android through 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted metadata in a (1) MP3 or (2) MP4 file.
Affected configurations
Node
googleandroidRange≤5.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| google:android | google android | le | 5.1.1 |
Related
nvd
nvd
CVE-2015-3876
2015-10-02 02:59:02
android
android
CVE-2015-3876
2015-10-01 00:00:00
Stagefright2
2015-10-01 00:00:00
prion
prion
Design/Logic Flaw
2015-10-02 02:59:00
cvelist
cvelist
CVE-2015-3876
2015-10-02 01:00:00
thn
thn
Stagefright Bug 2.0 — One Billion Android SmartPhones Vulnerable to Hacking
2015-10-01 04:38:00
ubuntucve
ubuntucve
CVE-2015-3876
2015-10-02 00:00:00
androidsecurity
androidsecurity
Nexus Security Bulletin - October 2015
2015-10-05 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.064 Low
EPSS
Percentile
93.7%
Related for CVE-2015-3876