Vulnerability CVE-2017-0539

Vulnerability Name:

CVE-2017-0539 (CCN-124403)

Assigned:

2016-11-29

Published:

2017-04-07

Updated:

2017-07-11

Summary:

A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33864300.

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2017-0539

Source: BID
Type: Third Party Advisory, VDB Entry
97330

Source: CCN
Type: BID-97330
Google Android Mediaserver Multiple Memory Corruption Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1038201

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://android.googlesource.com/platform/external/libhevc/+/1ab5ce7e42feccd49e49752e6f58f9097ac5d254

Source: CCN
Type: Google Web site
Android

Source: XF
Type: UNKNOWN
android-cve20170539-code-exec(124403)

Source: CCN
Type: Android Open Source Project
Android Security BulletinApril 2017

Source: CONFIRM
Type: Vendor Advisory
https://source.android.com/security/bulletin/2017-04-01

Vulnerable Configuration:

Configuration 1:

cpe:/o:google:android:5.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.0.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.0.2:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.1.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.1.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:6.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:6.0.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:7.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:7.1.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:7.1.1:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:google:android:5.1.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:6.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:6.0.1:*:*:*:*:*:*:*

OR cpe:/o:google:android:5.0.2:*:*:*:*:*:*:*

OR cpe:/o:google:android:7.0:*:*:*:*:*:*:*

OR cpe:/o:google:android:7.1.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.trusty:def:20170539000	V	CVE-2017-0539 on Ubuntu 14.04 LTS (trusty) - medium.	2017-04-07
oval:com.ubuntu.xenial:def:20170539000	V	CVE-2017-0539 on Ubuntu 16.04 LTS (xenial) - medium.	2017-04-07
oval:com.ubuntu.xenial:def:201705390000000	V	CVE-2017-0539 on Ubuntu 16.04 LTS (xenial) - medium.	2017-04-07

BACK