The public full disclosure of the Stagefright bug, presented by Drake, took place on Augat the Black Hat USA computer security conference, and on Augat the DEF CON 23 hacker convention. Legerov also confirmed that the vulnerabilities he discovered become unexploitable by applying the patches Drake submitted to Google. In July 2015, Evgeny Legerov, a Moscow-based security researcher, announced that he had found at least two similar heap overflow zero-day vulnerabilities in the Stagefright library, claiming at the same time that the library has been already exploited for a while.
Prior to the announcement, Drake reported the bug to Google in April 2015, which incorporated a related bugfix into its internal source code repositories two days after the report. The Stagefright bug was discovered by Joshua Drake from the Zimperium security firm, and was publicly announced for the first time on July 27, 2015. The discovered bugs have been provided with multiple Common Vulnerabilities and Exposures (CVE) identifiers, CVE- 2015-1538, CVE- 2015-1539, CVE- 2015-3824, CVE- 2015-3826, CVE- 2015-3827, CVE- 2015-3828, CVE- 2015-3829 and CVE- 2015-3864 (the latter one has been assigned separately from the others), which are collectively referred to as the Stagefright bug.
The underlying attack vector exploits certain integer overflow vulnerabilities in the Android core component called libstagefright, which is a complex software library implemented primarily in C++ as part of the Android Open Source Project (AOSP) and used as a backend engine for playing various multimedia formats such as MP4 files. A phone number is the only information needed to carry out the attack. Security researchers demonstrate the bugs with a proof of concept that sends specially crafted MMS messages to the victim device and in most cases requires no end-user actions upon message reception to succeed-the user doesn't have to do anything to 'accept' exploits using the bug it happens in the background. Exploitation of the bug allows an attacker to perform arbitrary operations on the victim's device through remote code execution and privilege escalation. The name is taken from the affected library, which among other things, is used to unpack MMS messages.
Stagefright is the name given to a group of software bugs that affect versions 2.2 "Froyo" of the Android operating system.
0 kommentar(er)
