|
268191
|
8.4 |
HIGH
Local
|
google
|
android
|
Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions v…
|
CWE-362
Race Condition
|
CVE-2016-0848
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268192
|
8.4 |
HIGH
Local
|
google
|
android
|
The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0847
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268193
|
8.4 |
HIGH
Local
|
google
|
android
|
libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0846
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268194
|
8.4 |
HIGH
Local
|
google
|
android
|
The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ioctl calls, which allows attackers to gain privileges via a crafted application, aka internal bug …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0844
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268195
|
8.4 |
HIGH
Local
|
google
|
android
|
The Qualcomm ARM processor performance-event manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to gain privileges via a crafted a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0843
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268196
|
8.4 |
HIGH
Local
|
google
|
android
|
The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-0842
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268197
|
9.8 |
CRITICAL
Network
|
google
|
android
|
media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mishandles cleared service binders, which allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-0841
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268198
|
8.4 |
HIGH
Local
|
google
|
android
|
Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-0840
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268199
|
9.8 |
CRITICAL
Network
|
google
|
android
|
post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (me…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-0839
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268200
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-0838
|
2024-11-21 11:42 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
