Buffer Overflow Vulnerabilities in libstagefright: Arbitrary Code Execution in Android

Buffer Overflow Vulnerabilities in libstagefright: Arbitrary Code Execution in Android

CVE-2015-3832 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Multiple buffer overflows in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via invalid size values of NAL units in MP4 data, aka internal bug 19641538.

Learn more about our Cis Benchmark Audit For Google Android.