Google patched some Android security vulnerabilities in early August. One of them was a remote code execution vulnerability in Mediaserver (CVE-2016-3820), which was discovered by me. This vulnerability could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue was rated as Critical by Google due to the possibility of remote code execution within the context of the Mediaserver process. The Mediaserver process has access to audio and video streams, as well as access to privileges that third-party apps could not normally access. The affected functionality is provided as a core part of Android, and there are multiple applications that allow it to be reached with remote content, most notably MMS and browser playback of media.
Fortinet Blog
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.