Elevation of Privilege Vulnerability in Mediaserver (CVE-2016-0827)
Publish Date: 07 de kwietnia de 2016
Severity: : High
CVE Kennungen: : CVE-2016-0827
Advisory Date: 07 de kwietnia de 2016
DESCRIPTION
There are multiple integer overflows that exist in the component libeffects in mediaserver in certain versions of the Android operating system. These vulnerabilities allow attackers to gain privileges via a crafted application. Trend Micro researcher Peter Pi is credited for the discovery and reporting of one of these vulnerabilities.
SOLUTION
AFFECTED SOFTWARE AND VERSION:
- Android 4.x before 4.4.4
- Android 5.x before 5.1.1 LMY49H
- Android 6.x before 2016-03-01