NVD

Id
25473  
Name
CVE-2015-3834  
Description
Multiple integer overflows in the BnHDCP::onTransact function in media/libmedia/IHDCP.cpp in libstagefright in Android before 5.1.1 LMY48I allow attackers to execute arbitrary code via a crafted application that uses HDCP encryption, leading to a heap-based buffer overflow, aka internal bug 20222489.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-09-30  
Modified Date
2015-10-01  
Seq
2015-3834  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
134757 25473 CVE-2015-3834 https://android.googlesource.com/platform/frameworks/av/+/c82e31a7039a03dca7b37c65b7890ba5c1e18ced  View
134758 25473 CVE-2015-3834 [android-security-updates] 20150812 Nexus Security Bulletin (August 2015)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9708 JVNDB-2015-005028 Android の libstagefright の media/libmedia/IHDCP.cpp 内の BnHDCP::onTransact 関数における整数オーバーフローの脆弱性 Android の libstagefright の media/libmedia/IHDCP.cpp 内の BnHDCP::onTransact 関数には、整数オーバーフローの脆弱性が存在します。 CVE-2015-3834 81059 CVE-2015-3834 25473 10 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005028.html 2015-07-09 2015-10-02 View