CVE-2017-0541

HIGH

Android 4.4.4-7.1.1 - Remote Code Execution via Crafted Media File in sonivox

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-0541. PoCs published by likekabin, C0dak.

AI-analyzed exploit summary The repository contains only a minimal README with no exploit code or technical analysis. It claims to provide a PoC and vulnerability analysis for CVE-2017-0541 but lacks any substantive content.

Description

A remote code execution vulnerability in sonivox in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-34031018.

Exploits (2)

nomisec STUB

by likekabin · poc

https://github.com/likekabin/CVE-2017-0541

View Code ZIP pw:eip

The repository contains only a minimal README with no exploit code or technical analysis. It claims to provide a PoC and vulnerability analysis for CVE-2017-0541 but lacks any substantive content.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec STUB

by C0dak · poc

https://github.com/C0dak/CVE-2017-0541

View Code ZIP pw:eip

The repository contains only a README with a brief description of CVE-2017-0541 but no actual exploit code, technical analysis, or proof-of-concept. It appears to be a placeholder or incomplete submission.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/2017-04-01

Various Sources x_refsource_misc

https://github.com/JiounDai/CVE-2017-0541

Issue Tracking, Patch, Third Party Advisory x_refsource_confirm

https://android.googlesource.com/platform/external/sonivox/+/56d153259cc3e16a6a0014199a2317dde333c978

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/97330

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1038201

Scores

CVSS v3 7.8

EPSS 0.0461

EPSS Percentile 89.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (35)

google/android 4.0

google/android 4.0.1

google/android 4.0.2

google/android 4.0.3

google/android 4.0.4

google/android 4.1

google/android 4.1.2

google/android 4.2

google/android 4.2.1

google/android 4.2.2

... and 25 more

Published Apr 07, 2017

Tracked Since Feb 18, 2026