← back
CVE-2015-7894

CVE-2015-7894

EPSS 8.9%
The DCMProvider service in Samsung LibQjpeg on a Samsung SM-G925V device running build number LRX22G.G925VVRU1AOE2 allows remote attackers to cause a denial of service (segmentation fault and process crash) and execute arbitrary code via a crafted JPG.
Affected products
n/a · n/a
public PoCs found3
cve_referencepacketstormsecurity.com/files/134197/Samsung-LibQjpeg-Image-Decoding-Memory-Corruption.htmlunverifiedcve_referencewww.exploit-db.com/exploits/38614/unverifiedexploitdbwww.exploit-db.com/exploits/38614unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/134197/Samsung-LibQjpeg-Image-Decoding-Memory-Corruption.htmlhttps://bugs.chromium.org/p/project-zero/issues/detail?id=495&redir=1https://www.exploit-db.com/exploits/38614/http://www.securityfocus.com/bid/77423