{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-08-12T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the SampleTable::setSampleToChunkParams function in SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code via crafted atoms in MP4 data that trigger an unchecked multiplication, aka internal bug 20139950, a related issue to CVE-2015-4496."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-20T09:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://android.googlesource.com/platform/frameworks/av/+/2434839bbd168469f80dd9a22f1328bc81046398"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/134131/Libstagefright-Integer-Overflow-Check-Bypass.html"}, {"name": "1033094", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1033094"}, {"name": "76052", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/76052"}, {"name": "38124", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/38124/"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.huawei.com/en/psirt/security-advisories/hw-448928"}, {"name": "[android-security-updates] 20150812 Nexus Security Bulletin (August 2015)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://groups.google.com/forum/message/raw?msg=android-security-updates/Ugvu3fi6RQM/yzJvoTVrIQAJ"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-1538", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in the SampleTable::setSampleToChunkParams function in SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code via crafted atoms in MP4 data that trigger an unchecked multiplication, aka internal bug 20139950, a related issue to CVE-2015-4496."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://android.googlesource.com/platform/frameworks/av/+/2434839bbd168469f80dd9a22f1328bc81046398", "refsource": "CONFIRM", "url": "https://android.googlesource.com/platform/frameworks/av/+/2434839bbd168469f80dd9a22f1328bc81046398"}, {"name": "http://packetstormsecurity.com/files/134131/Libstagefright-Integer-Overflow-Check-Bypass.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/134131/Libstagefright-Integer-Overflow-Check-Bypass.html"}, {"name": "1033094", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1033094"}, {"name": "76052", "refsource": "BID", "url": "http://www.securityfocus.com/bid/76052"}, {"name": "38124", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/38124/"}, {"name": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm", "refsource": "CONFIRM", "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm"}, {"name": "http://www.huawei.com/en/psirt/security-advisories/hw-448928", "refsource": "CONFIRM", "url": "http://www.huawei.com/en/psirt/security-advisories/hw-448928"}, {"name": "[android-security-updates] 20150812 Nexus Security Bulletin (August 2015)", "refsource": "MLIST", "url": "https://groups.google.com/forum/message/raw?msg=android-security-updates/Ugvu3fi6RQM/yzJvoTVrIQAJ"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-1538", "datePublished": "2015-10-01T00:00:00", "dateReserved": "2015-02-06T00:00:00", "dateUpdated": "2017-09-20T09:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*", "matchCriteriaId": "3573E693-716C-4B92-AC87-6466CBC26527", "versionEndIncluding": "5.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in the SampleTable::setSampleToChunkParams function in SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code via crafted atoms in MP4 data that trigger an unchecked multiplication, aka internal bug 20139950, a related issue to CVE-2015-4496."}, {"lang": "es", "value": "Desbordamiento de entero en la funci\u00f3n SampleTable::setSampleToChunkParams en SampleTable.cpp en libstagefright en Android en versiones anteriores a 5.1.1 LMY48I, permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de atoms manipulados en datos MP4 que desencadenan una multiplicaci\u00f3n no comprobada, tambi\u00e9n conocida como error interno 20139950, un caso relacionado con CVE-2015-4496."}], "id": "CVE-2015-1538", "lastModified": "2017-09-21T01:29:02.993", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-10-01T00:59:06.687", "references": [{"source": "cve@mitre.org", "url": "http://packetstormsecurity.com/files/134131/Libstagefright-Integer-Overflow-Check-Bypass.html"}, {"source": "cve@mitre.org", "url": "http://www.huawei.com/en/psirt/security-advisories/hw-448928"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/76052"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1033094"}, {"source": "cve@mitre.org", "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-448928.htm"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://android.googlesource.com/platform/frameworks/av/+/2434839bbd168469f80dd9a22f1328bc81046398"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://groups.google.com/forum/message/raw?msg=android-security-updates/Ugvu3fi6RQM/yzJvoTVrIQAJ"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/38124/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}