PT-2017-2851 · Google · Libjhead+1
Publicado
2017-09-01
·
Atualizado
2019-10-03
·
CVE-2017-0766
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Android versions 4.4.4 through 7.1.2
Description
The issue is related to insufficient access control in the libjhead library of the Android Media Framework, which can be exploited by a remote attacker to execute arbitrary code.
Recommendations
For Android versions 4.4.4 through 7.1.2, update to a version that contains a fix for this issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Android
Libjhead