PT-2016-7065 · Google · Android+1
Askyshang
·
Published
2016-11-25
·
Updated
2019-03-05
·
CVE-2016-6705
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Mediaserver in Android versions 5.0.x through 5.0.1
Mediaserver in Android versions 5.1.x through 5.1.0
Mediaserver in Android versions 6.x before 2016-11-01
Mediaserver in Android version 7.0 before 2016-11-01
Description
An elevation of privilege issue in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application.
Recommendations
For Android 5.0.x, update to version 5.0.2 or later.
For Android 5.1.x, update to version 5.1.1 or later.
For Android 6.x, ensure the build date is on or after 2016-11-01.
For Android 7.0, ensure the build date is on or after 2016-11-01.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Mediaserver