Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-3829
HistoryOct 01, 2015 - 12:00 a.m.

CVE-2015-3829

2015-10-0100:00:00
ubuntu.com
ubuntu.com
10

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.954

Percentile

99.4%

JSON

Off-by-one error in the MPEG4Extractor::parseChunk function in
MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allows
remote attackers to execute arbitrary code or cause a denial of service
(integer overflow and memory corruption) via crafted MPEG-4 covr atoms with
a size equal to SIZE_MAX, aka internal bug 20923261.

Notes

Author Note
jdstrand please see CVE-2015-1538 for details until more information is public Ubuntu 14.04 is affected but no supported images use it

Related

checkpoint_advisories 1
zdt 1
seebug 1
packetstorm 1
exploitpack 1
prion 4
nvd 4
cvelist 4
threatpost 1
cve 4
android 3
exploitdb 1
huawei 1
ubuntucve 70
thn 2
githubexploit 1
cert 1
androidsecurity 1
checkpoint_advisories
checkpoint_advisories
Google Android Stagefright MP4 Multiple Atoms Integer Overflow (CVE-2015-1538; CVE-2015-3824; CVE-2015-3829; CVE-2015-3864)
2015-08-12 00:00:00
zdt
zdt
Android Stagefright - Remote Code Execution Exploit
2015-09-09 00:00:00
seebug
seebug
Android Stagefright Media Playback Engine θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2015-09-10 00:00:00
packetstorm
packetstorm
Android Stagefright Remote Code Execution
2015-09-10 00:00:00
exploitpack
exploitpack
Google Android - Stagefright Remote Code Execution
2015-09-09 00:00:00
prion
prion
Integer overflow
2015-10-01 00:59:00
Integer overflow
2015-08-16 01:59:00
Integer overflow
2015-10-01 00:59:00
nvd
nvd
CVE-2015-3829
2015-10-01 00:59:13
CVE-2015-1538
2015-10-01 00:59:06
CVE-2015-4496
2015-08-16 01:59:22
cvelist
cvelist
CVE-2015-3829
2015-10-01 00:00:00
CVE-2015-4496
2015-08-16 01:00:00
CVE-2015-1538
2015-10-01 00:00:00
threatpost
threatpost
Android Stagefright Exploit Code Released to Public
2015-09-09 12:06:08
cve
cve
CVE-2015-3829
2015-10-01 00:59:13
CVE-2015-1538
2015-10-01 00:59:06
CVE-2015-4496
2015-08-16 01:59:22
android
android
CVE-2015-3829
2015-08-01 00:00:00
CVE-2015-1538
2015-08-01 00:00:00
Stagefright
2015-07-21 00:00:00
exploitdb
exploitdb
Google Android - 'Stagefright' Remote Code Execution
2015-09-09 00:00:00
huawei
huawei
Security Advisory - Stagefright Vulnerability in Multiple Huawei Android Products
2015-08-09 00:00:00
ubuntucve
ubuntucve
CVE-2017-0556
2017-04-07 00:00:00
CVE-2015-6602
2015-10-02 00:00:00
CVE-2015-6599
2015-10-06 00:00:00
thn
thn
THN Weekly Roundup β€” 15 Most Popular Cyber Security and Hacking News Stories
2015-09-14 10:34:00
Android Stagefright Exploit Code Released
2015-09-11 02:11:00
githubexploit
githubexploit
Exploit for CVE-2015-1538
2020-05-12 17:59:48
cert
cert
Android Stagefright contains multiple vulnerabilities
2015-07-28 00:00:00
androidsecurity
androidsecurity
Nexus Security Bulletinβ€”August 2015
2015-08-13 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.954

Percentile

99.4%

JSON
Related for UB:CVE-2015-3829
checkpoint_advisories1zdt1seebug1packetstorm1exploitpack1prion4nvd4cvelist4threatpost1cve4android3exploitdb1huawei1ubuntucve70thn2githubexploit1cert1androidsecurity1