"Stagefright" Android vulnerability (CVE-2015-3824)

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: HIGH

  CVE Identifier: CVE-2015-3824

  Advisory Date: JUL 31, 2015

---

  DESCRIPTION

This Android vulnerability known as “Stagefright” can be leveraged by attackers to install a malware on Android devices via a multimedia message (MMS). It affects versions of Android from 4.0.1 to 5.1.1. The said vulnerability, designated with CVE-2015-3824, resides in mediaserver component, which is for handling open media files.

  AFFECTED SOFTWARE AND VERSION

• Android from 4.0.1 to 5.1.1

Related Blog Entries

• MMS Not the Only Attack Vector for “Stagefright”
• OS X Zero-days on the Rise—A 2015 Midyear Review and Outlook on Advanced Attack Surfaces