>The critical RCE vulnerability (CVE-2019-2107) in question resides in the Android media framework, which if exploited, could allow a remote attacker to execute arbitrary code on a targeted device.>The most severe vulnerability in this section [media fra

Email
Comment *
File	Select/drop/paste files here
Password	(Randomized for file and post deletion; you may also set your own.)
* = required field	[▶ Show post options & limits] Confused? See the FAQ.

Comment *

File

Select/drop/paste files here

Password

(Randomized for file and post deletion; you may also set your own.)

* = required field

[▶ Show post options & limits]
Confused? See the FAQ.

Flag
Oekaki	Show oekaki applet (replaces files and can be used instead)
Options	Do not bump (you can also write sage in the email field) Spoiler images (this replaces the thumbnails of your images with question marks)
Allowed file types:jpg, jpeg, gif, png, webm, mp4, pdf Max filesize is 16 MB. Max image dimensions are 15000 x 15000. You may upload 3 per post.

Flag

Oekaki

Show oekaki applet
(replaces files and can be used instead)

Options

Do not bump
(you can also write sage in the email field)

Spoiler images
(this replaces the thumbnails of your images with question marks)

Allowed file types:jpg, jpeg, gif, png, webm, mp4, pdf
Max filesize is 16 MB.
Max image dimensions are 15000 x 15000.
You may upload 3 per post.

[–]

▶Anonymous 07/25/19 (Thu) 22:06:19 No.1081028 [Watch Thread][Show All Posts]

>The critical RCE vulnerability (CVE-2019-2107) in question resides in the Android media framework, which if exploited, could allow a remote attacker to execute arbitrary code on a targeted device.

>The most severe vulnerability in this section [media framework] could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process," Google described the vulnerability in its July Android Security Bulletin.

>However, it should be noted that if such malicious videos are received through an instant messaging app like WhatsApp or Facebook Messenger or uploaded on a service like YouTube or Twitter, the attack won't work. That's because these services usually compress videos and re-encode media files which distorts the embedded-malicious code.

<https://thehackernews.com/2019/07/android-media-framework-hack.html

Hope you don't browse webm threads on your phone, you're about to get wrecked.

▶Anonymous 07/26/19 (Fri) 00:36:00 No.1081078>>1081207

>No archive

>No subject or image

Nice thread faggot in all seriousness I use clover a bunch and my phone hasn't been update in awhile, am I fucked?

▶Anonymous 07/26/19 (Fri) 01:00:46 No.1081091

>browsing internet with phone

>owning smartphone

so dumb people are even here?

▶Anonymous 07/26/19 (Fri) 01:09:08 No.1081097

>thehackernews

you're still posting that shitty website 3 years later?

▶Anonymous 07/26/19 (Fri) 13:38:43 No.1081207

>>1081078

Most chans will reencode images/videos to prevent attaching other code or files to them. But last time I checked 8 chan doesn't.

▶Anonymous 07/26/19 (Fri) 17:15:58 No.1081252

I hope the guy who asked for rooting your phone with this to get his wish.

/tech/ - Technology★

General

WebM

Theme

User JS

Do not paste code here unless you absolutely trust the source or have read it yourself!

Favorites

Customize Formatting

Filters