PT-2017-10558 · Google · Android+1

Frank Liberato

Publicado

2017-02-08

Atualizado

2019-10-03

CVE-2017-0409

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Android versions 6.0 through 7.1.1

Description A remote code execution issue in the libstagefright library could allow an attacker to execute arbitrary code in the context of an unprivileged process by using a specially crafted file. This issue is considered High risk due to the possibility of remote code execution in applications that use this library.

Recommendations For Android versions 6.0 through 7.1.1, update to a version that includes the fix for this issue to prevent remote code execution.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2017-0409

Produtos afetados

Android

Libstagefright

PT-2017-10558 · Google · Android+1

CVE-2017-0409

Identificadores relacionados

Produtos afetados

Referências · 8