Back to search
CVE-2017-0406
Published: Feb 8, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. This affects the libhevc library. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32915871.
| Vendor | Product | Versions |
|---|---|---|
Google Inc. | Android | affected Android-6.0affected Android-6.0.1affected Android-7.0affected Android-7.1.1 |
References
1037798
vdb-entry
x_refsource_SECTRACK
96046
vdb-entry
x_refsource_BID
https://source.android.com/security/bulletin/2017-02-01.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now