CVE-2016-5867

HIGH

Android for MSM Firefox OS for MSM QRD Android - Stack Overflow in Sound Driver

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-5867. PoCs published by codecat007.

AI-analyzed exploit summary The PoC exploits a vulnerability in the Dolby audio driver by sending a malformed ioctl request with an oversized parameter length, triggering a heap-based buffer overflow. This can lead to privilege escalation or denial of service on affected Android devices.

Description

In a sound driver in Android for MSM, Firefox OS for MSM, QRD Android, some variables are from userspace and values can be chosen that could result in stack overflow.

Exploits (1)

github WORKING POC 8 stars
by codecat007 · cpoc
https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2016-5867

The PoC exploits a vulnerability in the Dolby audio driver by sending a malformed ioctl request with an oversized parameter length, triggering a heap-based buffer overflow. This can lead to privilege escalation or denial of service on affected Android devices.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Android kernel (Dolby audio driver)
No auth needed
Prerequisites: Access to /dev/snd/controlC0 · Dolby audio driver present
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/2017-05-01
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/98170

Scores

CVSS v3 7.0
EPSS 0.0006
EPSS Percentile 20.2%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-264
Status published
Products (2)
google/android
Qualcomm, Inc./All Qualcomm products Android for MSM, Firefox OS for MSM, QRD Android
Published Aug 16, 2017
Tracked Since Feb 18, 2026