NVD

Id
23823  
Name
CVE-2015-1539  
Description
Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-09-30  
Modified Date
2016-12-07  
Seq
2015-1539  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
126568 23823 CVE-2015-1539 http://www.huawei.com/en/psirt/security-advisories/hw-448928  View
126569 23823 CVE-2015-1539 76052  View
126570 23823 CVE-2015-1539 http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm  View
126571 23823 CVE-2015-1539 https://android.googlesource.com/platform/frameworks/av/+/5e751957ba692658b7f67eb03ae5ddb2cd3d970c  View
126572 23823 CVE-2015-1539 [android-security-updates] 20150812 Nexus Security Bulletin (August 2015)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9696 JVNDB-2015-005016 Android の libstagefright の ESDS.cpp の ESDS::parseESDescriptor 関数における整数アンダーフローの脆弱性 Android の libstagefright の ESDS.cpp の ESDS::parseESDescriptor 関数には、整数アンダーフローの脆弱性が存在します。 CVE-2015-1539 78764 CVE-2015-1539 23823 10 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005016.html 2015-07-09 2015-10-02 View