OS-MOBILE -- Snort has detected traffic targeting vulnerabilities in a mobile-based operating system. This does not include browser traffic or other software on the OS, but attacks against the OS itself.
OS-MOBILE Google Android libstagefright integer underflow attempt
This event is generated when a malicious MPEG-4 file attempts to trigger an integer overflow in Android's libstagefright library. Impact: High Details: Android's Stagefright library is a core library used for playing multimedia formats. It is in this library that an integer overflow vulnerable exists due to the MPEG4Extractor::parseChunk function located in the MPEG4Extractor.cpp failing to properly validate the size of the chunks specified by a MPEG-4 file. Attackers are then able to trigger the vulnerability via a specially crafted MPEG-4 file and achieve arbitrary code execution. Ease of Attack: Simple
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2015-3864 |
Loading description
|