cbcvebase.
CVE-2015-3827
published 2015-10-01

CVE-2015-3827: The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not validate the relationship between chunk…

PriorityP261critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
81.14%
99.6th percentile
The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not validate the relationship between chunk sizes and skip sizes, which allows remote attackers to execute arbitrary code or cause a denial of service (integer underflow and memory corruption) via crafted MPEG-4 covr atoms, aka internal bug 20923261.

Affected

2 ranges
VendorProductVersion rangeFixed in
googleandroid<= 5.1
googleandroid

Detection & IOCsextracted from sources · hover to see the quote

  • Inspect MPEG-4 files for malformed 'covr' atoms where chunk sizes and skip sizes have an invalid relationship, which can trigger integer underflow in MPEG4Extractor::parseChunk
  • Focus detection on libstagefright's MPEG4Extractor.cpp parseChunk function processing of 'covr' atoms as the vulnerable code path
  • ·Vulnerability affects Android 5.1 and below; Android 5.1.1 LMY48I and later are patched — scope detection efforts to unpatched devices running these versions
  • ·Severity is rated CRITICAL by Android Security Bulletin, indicating high exploitation potential via remote attack vectors (e.g., crafted media files delivered over MMS, browser, or streaming)
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.