Mediaserver in Android Vulnerability (CVE-2015-6616)

  Severity: CRITICAL
  CVE Identifier: CVE-2015-6616
  Advisory Date: DEC 09, 2015


This vulnerability resides in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01. It allows attackers to execute arbitrary code or cause denial of service (DoS), thus compromising the security of the device.

Trend Micro researcher Peter Pi discovered and reported the details of the vulnerability to Google. The said company credited Pi for his research contribution.