Exploitation Summary
EIP tracks 1 public exploit for CVE-2015-3837. PoCs published by itibs.
AI-analyzed exploit summary This PoC demonstrates a memory corruption vulnerability (CVE-2015-3837) in OpenSSL's X509_free function, allowing an attacker to manipulate function pointers in native code via JNI. The exploit leverages improper reference counting to achieve arbitrary code execution.
Description
The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5.1.1 LMY48I improperly includes certain context data during serialization and deserialization, which allows attackers to execute arbitrary code via an application that sends a crafted Intent, aka internal bug 21437603.
Exploits (1)
This PoC demonstrates a memory corruption vulnerability (CVE-2015-3837) in OpenSSL's X509_free function, allowing an attacker to manipulate function pointers in native code via JNI. The exploit leverages improper reference counting to achieve arbitrary code execution.