VDB
CVE-2015-3864
CVE-2015-3864
PUBLISHED
CVSS 10 CRITICAL
Integer underflow in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in mediaserver in Android before 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted MPEG-4 data, aka internal bug 23034759. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-3824.
EPSS 90.27% · 99.6th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
90.27%
99.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| android | 0 |
Exploit Intelligence
- PoC - Binary patches for CVE-2015-3864 (NOT for production, use at your own risk) (github-poc-repo)
- PoC - Binary patches for CVE-2015-3864 (NOT for production, use at your own risk) (github-poc-repo)
- PoC - Binary patches for CVE-2015-3864 (NOT for production, use at your own risk) (github-poc-repo)
- PoC - Binary patches for CVE-2015-3864 (NOT for production, use at your own risk) (github-poc-repo)
- PoC - Binary patches for CVE-2015-3864 (NOT for production, use at your own risk) (github-poc-repo)
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploits another Stagefright vulnerability, the integer overflow (CVE-2015-3864). (github-poc-repo)
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploits another Stagefright vulnerability, the integer overflow (CVE-2015-3864). (github-poc-repo)
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploits another Stagefright vulnerability, the integer overflow (CVE-2015-3864). (github-poc-repo)
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploits another Stagefright vulnerability, the integer overflow (CVE-2015-3864). (github-poc-repo)
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploits another Stagefright vulnerability, the integer overflow (CVE-2015-3864). (github-poc-repo)
…and 54 more exploits
Timeline
- Sep 17, 2015 PoC Published
- Sep 18, 2015 PoC Published
- Oct 1, 2015 CVE Published
- Mar 30, 2016 PoC Published
- Sep 27, 2016 PoC Published
- Sep 27, 2016 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
References
- [android-security-updates] 20150909 Nexus Security Bulletin (September 2015) mailing-list
- https://blog.zimperium.com/cve-2015-3864-metasploit-module-now-available-for-testing/ url
- https://android.googlesource.com/platform/frameworks/av/+/6fe85f7e15203e48df2cc3e8e1c4bc6ad49dc968 url
- 38226 exploit
- 76682 vdb
- https://blog.zimperium.com/reflecting-on-stagefright-patches/ url
- 40436 exploit
- 39640 exploit
- https://nvd.nist.gov/vuln/detail/CVE-2015-3864 advisory
- https://blog.zimperium.com/cve-2015-3864-metasploit-module-now-available-for-testing url
- https://blog.zimperium.com/reflecting-on-stagefright-patches url
- https://www.exploit-db.com/exploits/38226 url
- https://www.exploit-db.com/exploits/39640 url
- https://www.exploit-db.com/exploits/40436 url