Trend has not clarified whether the the current Android M version is susceptible to the attack.
The vulnerability is brought on by an integer overflow when themediaserverservice parses an MKV file.
It reads memory out of buffer or writes data to NULL address when parsing audio data.
It includes a malformed MKV file (res/raw/crash.mkv) to demonstrate how this attack functions.
Once the app is started, themediaserverservice will keep crashing.
This means that:
In many ways this vulnerability is similar to theStagefright attackwe reported yesterday.
While our team is monitoring closely for potential exploitation, weve seen no evidence of actual exploitation.
In addition, we will provide a fix in a future version of Android.
source: www.techworm.net
