Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/09/2016 Updated: 13/08/2017

CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 632

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

decoder/ih264d_api.c in mediaserver in Android 6.x prior to 2016-09-01 mishandles the case of decoding zero MBs, which allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 29493002.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google android 6.0
google android 6.0.1

CWE-284 http://source.android.com/security/bulletin/2016-09-01.html https://android.googlesource.com/platform/external/libavc/+/7109ce3f8f90a28ca9f0ee6e14f6ac5e414c62cf http://www.securityfocus.com/bid/92821 http://www.securitytracker.com/id/1036763 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-3878

Vulnerability Summary

References

Vulmon Search

About

Products

Connect