CVE-2017-0805

2017-08-24 02:29:00 2019-10-03 02:03:26

A elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37237701.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Google Android 5.1.1 (not an official CPE) Google Android 5.1.0 (not an official CPE) Google Android 5.1 (not an official CPE) Google Android 5.0.2 (not an official CPE) Google Android 5.0.1 (not an official CPE) Google Android Operating System 5.0 Google Android Operating System 4.4.4 Google Android Operating System 4.4.3 Google Android Operating System 4.4.2 Google Android Operating System 4.4.1 Google Android Operating System 4.4 Google Android Operating System 4.3.1 Google Android Operating System 4.3 Google Android Operating System 4.2.2 Google Android Operating System 4.2.1 Google Android Operating System 4.2 (Jelly Bean) Google Android Operating System 4.1.2 Google Android Operating System 4.1 Google Android Operating System 4.0.4 Google Android Operating System 4.0.3 Google Android Operating System 4.0.2 Google Android Operating System 4.0.1 Google Android Operating System 4.0 Google Android 6.0 (not an official CPE) Google Android 6.0.1 (not an official CPE) Google Android 7.0 (not an official CPE) Google Android 7.1.0 (not an official CPE) Google Android 7.1.1 (not an official CPE) Google Android 7.1.2 (not an official CPE)

Google - Android

Advisory	Patch	Confirmed	Link
			https://source.android.com/security/bulletin/2017-08-01

Improper Validation of Array Index (ID 129)

Related CAPEC 1 Overflow Buffers (CAPEC-ID 100)