CVE-2015-6612

Android < 5.1.1 LMY48X and 6.0 < 2015-11-01 - Privilege Escalation via libmedia

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-6612. PoCs published by secmob, flankerhqd.

AI-analyzed exploit summary This PoC exploits a buffer overflow vulnerability in Android's mediaserver component (CVE-2015-6612) by manipulating the `mNumBytesOfClearData` field in a `CryptoPlugin::SubSample` structure, leading to a controlled heap overflow. The exploit targets the `decrypt` function in the `ICrypto` interface, potentially causing a denial-of-service or remote code execution.

Description

libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to gain privileges via a crafted application, aka internal bug 23540426.

Exploits (2)

nomisec WORKING POC 23 stars

by secmob · poc

https://github.com/secmob/CVE-2015-6612

View Code ZIP pw:eip

This PoC exploits a buffer overflow vulnerability in Android's mediaserver component (CVE-2015-6612) by manipulating the `mNumBytesOfClearData` field in a `CryptoPlugin::SubSample` structure, leading to a controlled heap overflow. The exploit targets the `decrypt` function in the `ICrypto` interface, potentially causing a denial-of-service or remote code execution.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Android mediaserver (versions affected by CVE-2015-6612)

No auth needed

Prerequisites: Access to the target Android device · Ability to execute the compiled binary on the device

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec STUB 16 stars

by flankerhqd · poc

https://github.com/flankerhqd/cve-2015-6612poc-forM

View Code ZIP pw:eip

This repository contains minimal instructions for compiling a POC for CVE-2015-6612, a vulnerability in Android's media framework. No actual exploit code is provided, only build instructions.

Classification

Stub 30%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: Android media framework (unspecified version)

No auth needed

Prerequisites: Android source tree access · build environment setup

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory mailing-list x_refsource_mlist

https://groups.google.com/forum/message/raw?msg=android-security-updates/n1aw2MGce4E/jhpVEWDUCAAJ

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1034049

Scores

EPSS 0.0257

EPSS Percentile 83.2%

Details

CWE

CWE-264

Status published

Products (2)

google/android 6.0

google/android 5.0 - 5.1.1

Published Nov 03, 2015

Tracked Since Feb 18, 2026