EIP-2026-100039
PRE-CVELG MRA58K - 'ASFParser::ParseHeaderExtensionObjects' Missing Bounds-Checking
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-100039. PoCs published by Google Security Research.
AI-analyzed exploit summary This exploit targets an out-of-bounds heap read vulnerability in ASFParser::ParseHeaderExtensionObjects due to an unchecked memcpy operation. The PoC triggers a crash in the mediaserver process, potentially allowing memory leakage.
Description
LG MRA58K - 'ASFParser::ParseHeaderExtensionObjects' Missing Bounds-Checking
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Google Security Research · textdosandroid
https://www.exploit-db.com/exploits/42171
This exploit targets an out-of-bounds heap read vulnerability in ASFParser::ParseHeaderExtensionObjects due to an unchecked memcpy operation. The PoC triggers a crash in the mediaserver process, potentially allowing memory leakage.
Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target:
LG ASF Parser (liblg_parser_asf.so) on Android 6.0
No auth needed
Prerequisites:
Access to a vulnerable Android device with the affected LG ASF Parser library
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026